Date: Fri, 15 Jun 2001 09:14:22 -0400 From: joel2a@yahoo.com To: Bill Moran <wmoran@iowna.com> Cc: freebsd-questions@FreeBSD.ORG Subject: Re: Justification for using FreeBSD Message-ID: <4.2.2.20010615085442.00b83960@pop.mail.yahoo.com> In-Reply-To: <3B2A029C.107C0014@iowna.com> References: <5.1.0.14.2.20010615015821.02135168@mail.cz> <5.1.0.14.2.20010615015821.02135168@mail.cz> <5.1.0.14.2.20010615055641.03f5dba0@mail.cz>
next in thread | previous in thread | raw e-mail | index | archive | help
I have been using IIS for about over two years now. It has performed well and if you follow the MS security guidelines, like unbinding TCP from Netbios, nobody can access the internal netbios network from the internet as far as I know. Coupled with the BlackICE firewall with the paranoid option and having port 80 as the ONLY available open port my site has been virtually impenetrable. At least nobody that I know has been able to prove they broke into it! So yes most breakins are an admin error, I think. The only reason I got into freebsd is because I wanted to try a new toy, to experiment with, to see if all the hype about it is really true and because I needed a new free mail server. I also run a mini ISP system and the potential future expansion with no license costs is a very compelling reason to justify the use of FreeBSD. I think the no license costs of expansion coupled with a proven track record by Yahoo and others is really the major benefit! Joel At 08:42 AM 6/15/01 -0400, you wrote: >Cynic wrote: > > IIS isn't as crippled as you might think from the majority of opinions > expressed > > on unix-related mailing lists. My experience shows that most people > would rather > > die than admit something different from their favorite toy is ok (let > alone a product > > of the Redmond Satan!). IIS is just a web server, it has good points > and bad points. > > One of it's worst aspects is the fact that--since it's a "M$ > crap"--it's one of the > > most popular targets, and... Have you noticed how loudly the unix mob > "applauds" > > to every hole in anything from MS? however, it's quite different the > other way > > around. apache.org has been breached. if I weren't subscribed to the > new-httpd@ > > list, I wouldn't know. toye.php.net has been breached. If I weren't a > PHP developer > > taking part in PHP's QA I wouldn't know. see my point? you can happily > move any > > "legacy" content to the IIS box, using either shlight (Sharity Light) > or mod_proxy > > (or mod_rewrite, if you wish so) to "hide" the IIS, and focus on > FBSD/Apache. > >Let's keep things in perspective here ... The breach of Apache.org had >nothing to do with the Apache web server. That same method of breach >could have been used to breach ANY system - it was an admin error. >I'm not familiar with the toye.php.net breach, so I can't really comment >there. >And I have never said (and will never say) that IIS is "crippled". I >have said and will repeat that it's expensive, slow, non-standards >compliant and difficult to customize compared to Apache. It does work, >and can be used. I'm also not familiar with the newest version (since >I've stopped using it) so my information could be a bit out of date. >If you want to know which which is better, security wise, check out >bugtraq and other such services and see who has more reported problems. >Then decide for yourself. > > > Well, while very standards-focused, the apache developers know that a > strict > > implementation would lead the popularity of apache south. :) they > provide hacks, which > > are enabled by default. Of course, these are often minor problems > showing up in > > border situations. Or you might not notice at all. (that is nothing to > say about > > other browsers!) > >True ... it's funny to read through the config file and see the >allowances that are made for certain browsers that are known to be >broken. > >-- >If a bird in the hand is worth two in the bush, >then what can I get for two hands in the bush? > >To Unsubscribe: send mail to majordomo@FreeBSD.org >with "unsubscribe freebsd-questions" in the body of the message _________________________________________________________ Do You Yahoo!? Get your free @yahoo.com address at http://mail.yahoo.com To Unsubscribe: send mail to majordomo@FreeBSD.org with "unsubscribe freebsd-questions" in the body of the message
Want to link to this message? Use this URL: <https://mail-archive.FreeBSD.org/cgi/mid.cgi?4.2.2.20010615085442.00b83960>