We need someone to tell us what steps are required to fix the following security vulnerabilities on a IIS 6.0 internet web server.
1) Uncencrypted_VIEWSTATE parameter. We need to have this parameter incrypted.
2 )SSL RC4 Cipher Suites Supported. How to disable RC4 cipher?
3) OPTIONS method is enabled. How can we disable this ?
4) The Clickjacking ...
Skills: security analysis, security engineering, internet information services (iis), internet security