>>>>> "Robert" == Robert Laird <rlaird @
panenergy .
com> writes:
Robert> Since my new Web server is going to sit outside the firewall,
Robert> I'm wondering if MS IIS or Netscape's Enterprise is "more
Robert> secure" than the other?
Given that even Microsoft has been having trouble keeping their site
up and running due to people exploiting IIS and/or NT bugs, I'm
inclined to believe that Microsoft's software is likely to be lower in
quality than Netscape's.
Also consider that Microsoft has been in "catch-up" mode for quite
some time, ever since they decided that they needed to have an
"internet strategy" (whatever that is). So, they're in a hurry to get
stuff out the door, and are unlikely to hold up progress by doing
things like extensive debugging. Further, Microsoft just isn't used
to writing software that runs on untrusted networks, and the problems
with their own web site seems a pretty good indication of their
scalability and ability to resist attack.
I like Netscape's servers quite a lot, and recommend them to someone
who is looking for a commercial solution to their problem, or just
can't edit configuration files for some reason to make a web server
come up...
Having said that, I'll add that my favorite web server is Apache.
It's got full source code availability, and has lots of people looking
it over. Bugs are much more likely to be discovered and fixed in that
sort of product than in anything where source is not available.
Further, it's darn, darn, fast, easy to configure and maintain, and
it's free. Run it on a FreeBSD machine, and then see how Microsoft
can claim that their almost-half-as-cool stuff can keep up, or come in
at 1/3 the price...
http://www.apache.org/
http://www.freebsd.org/
--
Matt Curtin Chief Scientist Megasoft Online cmcurtin @
research .
megasoft .
com
http://www.research.megasoft.com/people/cmcurtin/ I speak only for myself
Pull AGIS.NET's plug! DES has fallen! http://www.frii.com/~rcv/deschall.htm
References:
|
|
