-
Perhaps the focal point of our entire econmic system is:
Money today is worth more than money tomorrow.
Consequently, I put off all business related expenses for as long as possible. :)
It is not so much that Linux has done a lot to up security... it is just that there are a zillion and one different Linux security projects going on. Some are good, most are still really too unstable to consider. SELinux for example... only in open source land could you have a product labeled as "Research only, not for production level system" thown into, you guess it! Production level systems! :)
Because Linux is so frequently configured at a core level, it's security can only be discussed on a per system or per distro basis. Unlike Windows or Solaris or AIX or whatever with their more universal security functionality.
cheers,
catch
-
apples to oranges. yes, windows does have security problems. yes, linux does have security problems. Its just not the same group of problems. An unpatched window server can get compromised as little as 15 minutes over an unprotected internet connection, an unpatched linux server can get rooted in as little as 15 minutes over an unprotected internet connection.
IIS will probly never threaten the percentage of linux web servers in use. But its still apples to oranges.
-
..... not to mention I get buttmunched about hearing Linux versus windows as an OS versus the applications. Apache is an application not the OS. In fact it runs on a variety of platforms. It is NOT linux, although it's roots are in Linux development. The advantage is most distros let you install it from their respective control panels but it's just as easy to get it up on Windows. So is it more secure on Windows versus Linux? We all know IIS is a pig, but it has it's uses. Especially if you already own it with a Server Distro. In fact you can't use exchange without it. The security issues really stem from stupid installation scripts from jack ass software corporations that do not think security as well as good Linux programmers. BUT, and that's a huge but - there are some SHITTY Linux programs out there from a security and even a stability standpoint (like Catch pointed out). MS does a better job perhaps of dealing with programs executing BAD code.
