Linux vs Windows
Can anybody comment on the market conditions of using Linux vs Windows servers
and where this leaves Microsoft oriented web application developers? Somebody
I know raised some weaknesses Microsoft has in terms of security to constantly
add new security patches and the costs involved in doing this. I have also
seen a lot of comments about Microsoft's licensing policy.
Finally, if MIcrosoft is in trouble with regard to some of these issues and
more people are using Linux. Does this mean that technologies such as ASP,VB,COM,
etc are of no use on a new platform? Please forgive me, as I am new to issues
involving other operating systems, when asking this question.
[713 byte] By [
HDM1] at [2007-11-9 23:49:53]
# 1 Re: Linux vs Windows
"HDM1" <h+mishell@hotmail.com> wrote:
>
>Can anybody comment on the market conditions of using Linux vs Windows servers
>and where this leaves Microsoft oriented web application developers? Somebody
>I know raised some weaknesses Microsoft has in terms of security to constantly
>add new security patches and the costs involved in doing this. I have also
>seen a lot of comments about Microsoft's licensing policy.
>
>Finally, if MIcrosoft is in trouble with regard to some of these issues
and
>more people are using Linux. Does this mean that technologies such as ASP,VB,COM,
>etc are of no use on a new platform? Please forgive me, as I am new to
issues
>involving other operating systems, when asking this question.
Just a quick correction. Linux is not a web server, Apache is a web server
often used on Linux. Apache is by far the more popular web server with about
60% of the market compared to IIS 4.0/5.0 25%. Although the latest numbers
from NetCraft show Apache losing a few points and IIS gaining a few points.
There is a holy war going on as to whether Apache is really more secure
than IIS 4.0/5.0 or just a lesser target. Apache is more secure out of the
box. You would have to work to make Apache unsecure. Whereas, IIS is unsecure
out of the box and you must work to make it secure. In my experience though,
the work required to secure an IIS box is really trivial. Microsoft is going
to have to do something about their security image if they are going to push
forward with plans for .Net and web services. They have recently begun moving
in this direction with the release of the IIS Lockdown and Urlscan programs.
I am sure more will follow. The choice between Apache/IIS should not be
made on security considerations alone. You should also look at which will
offer the better web services platform. Right now that is hands down Microsoft
even though the .Net platform is still in beta. The decision to make is
do you move ahead and learn IIS+/ASP.Net or do you evaluate alternatives
such as J2EE/Apache/Linux. I think in the long run Microsoft will fix their
security problems and there will be a strong future for IIS/ASP.Net developers.
Ken at 2007-11-12 0:14:51 >
# 2 Re: Linux vs Windows
ignoring any vendor or technology for a moment - the most secure systems are
those which are managed best. if you poorly managed ProductA, then it's just
a matter of time before it gets hacked. it's an unfortunate fact of life.
whether you choose A or B is utlimatley up to you, but whichever path you
choose, please manage it correctly.
FWIW, people that applied the IIS4 and IIS5 checklists fully have not been
attacked by any recent attack.
"HDM1" <h+mishell@hotmail.com> wrote:
>
>Can anybody comment on the market conditions of using Linux vs Windows servers
>and where this leaves Microsoft oriented web application developers? Somebody
>I know raised some weaknesses Microsoft has in terms of security to constantly
>add new security patches and the costs involved in doing this. I have also
>seen a lot of comments about Microsoft's licensing policy.
>
>Finally, if MIcrosoft is in trouble with regard to some of these issues
and
>more people are using Linux. Does this mean that technologies such as ASP,VB,COM,
>etc are of no use on a new platform? Please forgive me, as I am new to
issues
>involving other operating systems, when asking this question.
