In May of this year (2009), a security researcher discovered and reported a vulnerability in Microsoft's Internet Information Server (IIS) WebDAV component. Microsoft published some guidance on this in a KB article, but it was really sparse and not at all obvious how to make sense of it.
Those who are IIS experts would know right what this all meant, but I (for one) was in the "Ok, so what exactly is WebDAV, and how do I know if I even have it?" camp. After researching things, it became clear that a simple flowchart could help most users realize that they are not in fact vulnerable (sigh of relief), with the tricky cases left to those who are most likely to have experts around who know the nitty gritty.
So this paper assumes essentially no web or IIS expertise, but helps get to that good place quickly.
But please: if you're not sure about any parts of your own security posture, find local experts to guide you.