Microsoft has issued a workaround for the massive security hole in IIS 4 that I linked to previously.