On mySimon: The Book of Basketball
BNET Business Network:
BNET
TechRepublic
ZDNet
TalkBack 24 of 65:
Next »
« Previous
You certainly are something "GRindinAxTaRupy"
[quote]I read the article and NOWHERE did it mention apache. Seems someone needs to get a clue about something he employs so well: hypocrisy! [/quote]

In case you forgot, *you* are the one that brought up Apache in the first place, and if you want to talk about Apache, IIS and security, I'll be happy to oblige.

Of course Apache running alone is going to be a pretty damn secure web server, but it won't do much. How many people run *real* websites on apache without php, asp, perl, or ssl, or mysql installed?

What you just don't get (because you obviouly have no real systems experience) is that there more to Apache than just Apache. If there is vulnerability with php, and your apache server uses php, then someone will be able to compromise your apache box and assume the same priveledges as the web server. The same goes with MySQL, ssl, perl, ect.

Many if the IIS vulnerabilities have to do with unessesary 'addon' features that have nothing to do with basic web serving, like the Indexing service, ASP, WebDAV, ect. Turn these things OFF, and you have a much more secure, though possibly less usefull server.

The big differences between IIS and Apache when it comes to security, it that IIS comes with all of the whiz-bang features enabled, and it runs by default as a privledged account.

The actual quality or security of the code behind each web server solution is rather irrelevant, as what it comes down to are those difference I pointed out above. 99% of these differences can be abated with Microsoft Products, but unfortunately, users like you, who lack a basic understanding of what network systems security entails, are the ones who use only Microsoft products.

Instead of praising apache for it's valid strengths (designed to run under a restricted account, very stable, effecient, large user community), you bash the other guy and quote irrelevant, and suspect statistics.

Instead of knowing *why* IIS servers get hacked alot, and complaining about the *real* problems with Microsoft products, you just jump on the blame-microsoft bandwagon and spout a bunch of regergitated propoganda.

Get a clue.
Posted by: toadlife   Posted on: 12/04/03 You are currently: a Guest | Members login | Terms of Use
Reply to Story No further replies to this post will be accepted.

Alert moderator to an offensive message

Subscribe to this discussion via Email or RSS

Hacked Linux?  Octol | 12/04/03
Nothing like a little schadenfreude...  frgough@... | 12/04/03
What's the matter?  John Dulles | 12/04/03
what medicine?  ryusen | 12/04/03
Hmmm . . . SCO maybe ?  meveridge_z | 12/06/03
pst  stephen732@... | 12/04/03
It was the "admin's" fault...  GRindinAxTaRupy | 12/04/03
Unknown my foot  John Dulles | 12/04/03
puma ignoramus  nikoli | 12/04/03
Did you smoke ...  dopeshow | 12/04/03
Re: Hacked Linux?  Martin Marvinski | 12/04/03
reputable linux user?  nikoli | 12/04/03
really?  ryusen | 12/04/03
sorry  engel000 | 12/05/03
Hacked Linux? Yes  Clete2 | 12/09/03
oops  Clete2 | 12/09/03
It was an evil M$ spell  theraven_z | 06/27/05
The bigger the target...  No_Ax_to_Grind | 12/04/03
Then why isn't apache hacked...  GRindinAxTaRupy | 12/04/03
Uh huh...  No_Ax_to_Grind | 12/04/03
m$ #1  stephen732@... | 12/04/03
Gentoo runs Windows????  No_Ax_to_Grind | 12/04/03
Then what...  GRindinAxTaRupy | 12/04/03
You certainly are something "GRindinAxTaRupy"  toadlife | 12/04/03
Yes, Linux has vunerabilities.  nucrash | 12/04/03
Re: Yes, Linux has vunerabilities.  Martin Marvinski | 12/04/03
Missed the point of that post  GRindinAxTaRupy | 12/04/03
That doesn't surprise anyone...  No_Ax_to_Grind | 12/04/03
Gee Bit..thought condescending snotty replies...  GRindinAxTaRupy | 12/04/03
For my coat tail riders I make an exception.  No_Ax_to_Grind | 12/04/03
No credible argument?  toadlife | 12/04/03
How many bugs in IIS  jasonp@... | 12/04/03
What a sad excuse.  dopeshow | 12/04/03
As i said before:  ryusen | 12/04/03
Yes!  John Le'Brecage | 12/04/03
Correction...  John Le'Brecage | 12/04/03
Had to be the Administrator, its not an OS issue  FilledOut | 12/04/03
More than likely..  vdraken | 12/04/03
Yes, it is the rsync!  dopeshow | 12/04/03
Never had a need to.  vdraken | 12/04/03
Linux being hacked  crocd | 12/04/03
Because they can.  vdraken | 12/04/03
usually though,  ryusen | 12/04/03
It's because  John Dulles | 12/04/03
Yes indeed...  No_Ax_to_Grind | 12/04/03
Yes indeed  GRindinAxTaRupy | 12/04/03
Not sure of the #'s  Suicida| | 12/07/03
cheap thrill  crocd | 12/04/03
Vulnerable Linux vs. Multi-Billion $$$ MS Antics  michael-t | 12/04/03
Don't blame us, the other guy is worse?  No_Ax_to_Grind | 12/04/03
don't usually agree with you but...  nikoli | 12/04/03
Correction Needed?  michael-t | 12/04/03
Best Practice = Best Answer  michael-t | 12/04/03
compromised to a LESSER degree than Linux...  toadlife | 12/04/03
*BSD is Unix  michael-t | 12/04/03
Rearrange  Yagotta B. Kidding | 12/04/03
It is impossible  michael-t | 12/04/03
Nitpick all you want but  toadlife | 12/04/03
Unix vs *BSD vs Linux  michael-t | 12/04/03
Be fair  Rokstar83 | 12/05/03
The Ultimate Security Tool  nucrash | 12/04/03
Interesting Point  michael-t | 12/04/03
So is OS X Server now the only....  mlindl | 12/05/03
michael-t  noShut_z | 12/05/03
Thanks  michael-t | 12/05/03

What do you think?

SponsoredWhite Papers, Webcasts, and Downloads

advertisement
Premier Vendor Content Whitepapers, webcasts & resources from our Power Center Sponsors
advertisement

SmartPlanet

  • Thought-provoking progressive ideas on diverse topics that intersect with technology, business, and life, and matter to the world at large. Visit SmartPlanet
  • More from IBM
  • Innovate your business' process model, play against the market, compete against others on our scoreboards and WIN! Try INNOV8 2.0: A BPM Simulator
  • Enabling Real-World Business Transformation through IBM Service Management Read the EMA Analyst Report
Click Here