- TalkBack 5 of 7:
- Next »
- « Previous
- Thread View
- Flat View
- IIS + Windows
-
Most of the phishing pages (not sites-- pages on someone elses' web server) I have investigated have been on Windows servers. Why?
1) Windows + IIS is easier to hack into. Perhaps, but I don't think this is conclusive that Windows + IIS is automatically "less secure".
2) Third party addons. I think this is more likely the case. My impression has alway been that the tools used to create IIS plugins (blogs, photo sites, etc) do not emphasize security. In other words, it is quite easy to build an insecure Windows web server (easier than Unix + Apache).
3) Clueless system admins. I think this is the most likely reason. All servers have the possibility of being managed by the clueless. There just tends to be (in my experience) a lot more clueless Windows admins. Perhaps Linux admins have more experience with networking and programming in general? Perhaps a MSCE is more about passing a Microsoft sales seminar than actualy learning how to properly run a server on the internet? Perhaps.
BTW-- PHP on Apache is a dangerous thing. Of the non-windows servers that have been hacked for phishing, all have been Apache+PHP. Admins need to be wary of installing the latest n' greatest "cool" PHP app on their server. Most of the code floating around has no security whatsoever-- and cannot be made secure. This is similar to the problem with IIS plugins. As the code gets easier to write, people who should not be programmers can write code that appears to work just fine. Yes, I said it-- "people who should not be programmers". - Posted by: RestonTechAlec Posted on: 02/27/06 You are currently: a Guest | Members login | Terms of Use
Wow, thanks MS for making this all possible. You have created huge
DonnieBoy | 02/27/06
|
 
No, it's power lusers like you who made it possible.
Mr. Roboto | 02/27/06
|
|
Explain to us
Loverock Davidson | 02/27/06
|
|
IIS Windows
RestonTechAlec | 02/27/06
|
|
IIS + Windows
RestonTechAlec | 02/27/06
|
I am amazed that
BXLE | 02/28/06
|
|
Cross threaded windows
pj-xmesh | 02/27/06
|
What do you think?
SponsoredWhite Papers, Webcasts, and Downloads
- Building the Virtualized Enterprise with VMware Iinfrastructure VMware VMware virtualization software has been adopted by over 120,000 enterprise ... Download Now
- Three Steps You Need to Know to Stop Data Loss Varonis Sensitive data exposed to misuse or loss... it is the stuff of nightmares ... Download Now
- Five Steps to Determine When to Virtualize YourServers VMware Server virtualization isn't just for big companies. Entry-level ... Download Now
Premier Vendor Content Whitepapers, webcasts & resources from our Power Center Sponsors
- The best support in the Linux business
-
If Linux is going to power your mission-critical applications, you'd better have the best support known to business. Novell was rated the top provider of Linux technical support.
- Learn more >>
- Keep Up With The Latest In Document Management with The DocuMentor.
-
Doc delivers the scoop on today's enterprise content management, printer maintenance, and all other issues related to document management. It's the DocuMentor Blog.
- Learn more >>
- Save time with automated shipping solutions
-
The Business Essentials Guide provides you useful tools and templates to help grow your business and save you time with automated shipping solutions.
- Visit the UPS Business Essentials Guide
- New Online Dashboard for IT Leaders
-
Read about top issues IT decision-makers face every day, plus get cost-effective solutions to real-life IT problems.
- Learn more >>
- Microsoft Dynamics CRM Online - Free Six-Month Trial for Eligible Organizations
-
Microsoft Dynamics CRM Online provides fast online access, simple contact management and better sales performance for a low monthly cost - the best value on the market today.
- Learn more about the free, six-month trial offer>>
-
-
Smart Tech
Expert advice on innovations in healthcare and the green technologies that make it happen.
Find out more
-
Smart Business
Discussion and advice on management issues that revolve around making your world smarter and more useful.
More Smart Advice
-
Smart People
The best and worst moves in the management and strategy trenches.
Learn More
