1. List some best practices for hardening IIS.
List some best practices for hardening Internet Explorer.
2. What options are available to prevent brute force authentication attacks in a Windows-based domain?
If attacks were coming from an internal IP, would you allow the attack to continue to investigate further or stop the attack?