> Dear List,

> I was considering getting a 'real server' to host some web services,
> but am not sure which Microsoft server is best suited to hosting Web
> Services and a database. Right now my Web Services connect to an
> Oracle database, however, I realize that a Sql Server database would
> probably be best so as to keep everything more tightly integrated and
> maximise compatibility across the Microsoft and .NET environments.

> Is Sql Server a standalone server on its own, like an operating
> system, or is it installed on another server such as Windows 2003
> Server, and run from there?

> Generally, could anyone suggest what Server is best suited to my needs
> and what might be best avoided?

> what might be best avoided?

> I suggest that you find a Web Service Provider and use that, if you
> want to play. WSP(s) are cheap.

"davebythesea" <davebythesea@discussions.microsoft.com> wrote in message
news:558124AD-B3E5-4800-9A2A-D918A2D290D6@microsoft.com...
> Hi,
>
> Thanks for your replies. Yeh I'd considered just buying some hosting, but
> think it might be fun to have a play with my own server - obviously using
> caution in terms of security. The last thing i want is to have my server
> hacked! Still, its probably easier to just buy a host package, but I might
> want to transfer unlimited amounts of data and dont want to end up paying
> over the odds if I can host it all locally and be in more control. We'll
> see
> I guess...

> Still, its probably easier to just buy a host package, but I might
> want to transfer unlimited amounts of data and dont want to end up
> paying over the odds if I can host it all locally and be in more
> control. We'll see I guess...
>

"Mr. Arnold" wrote:

>
> "davebythesea" <davebythesea@discussions.microsoft.com> wrote in message
> news:558124AD-B3E5-4800-9A2A-D918A2D290D6@microsoft.com...
> > Hi,
> >
> > Thanks for your replies. Yeh I'd considered just buying some hosting, but
> > think it might be fun to have a play with my own server - obviously using
> > caution in terms of security. The last thing i want is to have my server
> > hacked! Still, its probably easier to just buy a host package, but I might
> > want to transfer unlimited amounts of data and dont want to end up paying
> > over the odds if I can host it all locally and be in more control. We'll
> > see
> > I guess...
>
> Like I said, Web server and Security admins can hardly do it, and they have
> read the books, and they have been given the proper training, to secure a
> Web Server, running the Windows platform, and the Web server is being
> exposed to the public Internet.
>
> There is no such thing as caution in terms of security. You had better know
> what you're doing security wise with the Windows O/S and IIS, as otherwise,
> it's just hack bait you're putting out there to be attacked and used as a
> jumping off point to attack others.
>
>

"Spam Catcher" wrote:

> =?Utf-8?B?ZGF2ZWJ5dGhlc2Vh?= <davebythesea@discussions.microsoft.com>
> wrote in news:558124AD-B3E5-4800-9A2A-D918A2D290D6@microsoft.com:
>
> > Still, its probably easier to just buy a host package, but I might
> > want to transfer unlimited amounts of data and dont want to end up
> > paying over the odds if I can host it all locally and be in more
> > control. We'll see I guess...
> >
>
> Web servers use very little data - unless you're transferring binary data.
> CrystalTech has full shared hosting plans with generous transfers :-)
>
> In anycase, check your ISP TOS too ... they may or may not allow home
> servers, and depending on your usage, you could end up losing your home
> connection.
>

>
> Would you care to offer some tips on how to secure a web server so it is
> not
> hack bait? You must have learned the secrets somewhere, care to share a
> good
> reference to doing it 'right'?
>

> If you're planning on using a Windows Workststion O/S like Win 2K Pro, XP
> Pro or one of the Vista Business editions, don't because they are not
> solutions with an O/S that's designed to face the Internet hosting a Web
> Server.
>
> <http://www.google.com/search?hl=en&q=how+to+secure+Windows+2003+server&btnG=Google+Search>
>
> <http://www.google.com/search?hl=en&sa=X&oi=spell&resnum=0&ct=result&cd=1&q=how+to+secure+IIS+6&spell=1>
>
> <http://www.google.com/search?hl=en&q=how+to+secure+a+.net+Web+application&btnG=Search>
>
> <http://www.google.com/search?hl=en&q=how+to+secure+windows+2003+running+IIS&btnG=Google+Search>
>
> I suggest you find some books, because this is nothing to play around with
> from a home user perspective, which many a home user think they can do or
> don't even know about it period, and they just put up a Win NT based O/S
> workstation edition hosting a Web Server.
>
> <http://www.windowsecurity.com/articles/Hidden_Backdoors_Trojan_Horses_and_Rootkit_Tools_in_a_Windows_Environment.html>
>
> I point you do the above link, because no personal firewall or some AV
> application is going to protect that machine, and you have got to look.
>
> I also suggest that you abandon this mission of yours, and find a secure Web
> hosting service provider, but of course, you're going to do what you want to
> do.
>