from: Rey Bango [EMAIL PROTECTED]
Replacing every IIS box makes absolutely no business sense and the cost
would be astronomical.
Depends on whether it is replaced with a free open source alternative like
AOLServer or Apache or with it is replaced with a commercial alternative.
--
Never
from: Costas Piliotis [EMAIL PROTECTED]
You know it's funny though. A quick search at www.securiteam.com shows that
Apache and iPlanet have many vulnerabilities as well. Think perhaps that
the research is simply political? Hackers seem to actually target IIS boxes
likely for their hatred
Larry,
I replied directly to you because we were asked to move this to
cf-community.
Rey...
- Original Message -
From: Larry W. Virden [EMAIL PROTECTED]
To: CF-Talk [EMAIL PROTECTED]
Sent: Wednesday, September 26, 2001 8:44 AM
Subject: Re: Check out what Gartner is recommending. Drop
Replace IIS with whatever you want - but you have to see it this way - if
something goes tits-up; Microsoft will and can help - the Apache group will
simply lull in its little oh we hate Microsoft world
On a side note I really wish people would stop coming down on Microsoft (and
no I am not
-
From: Neil Clark [mailto:[EMAIL PROTECTED]]
Sent: Wednesday, September 26, 2001 9:41 AM
To: CF-Talk
Subject: RE: Check out what Gartner is recommending. Drop IIS!
Replace IIS with whatever you want - but you have to see it
this way - if
something goes tits-up; Microsoft
You saying its hard to get a MS Cert :-) I agree that for workstations
Linux do seem a good choice - but lets be fair a nice little Server farm of
NT or Unix cant b beat and lets be fair - Linus has an awful haircut
~~
Get the mailserver that
At 11:15 AM 09/26/2001 -0400, you wrote:
the Microsoft people are FAR FAR MORE intelligent than these Open Source
chaps and chapesses.
Microsoft only has so many developers when the open source world pulls from
unlimited numbers of developers all with there own backgrounds and
experience to
. It's a way of
life in IT.
-Original Message-
From: Toby Tremayne [mailto:[EMAIL PROTECTED]]
Sent: Tuesday, September 25, 2001 10:02 PM
To: CF-Talk
Subject: Re: Check out what Gartner is recommending. Drop IIS!
cfwhinge
I'm sorry - I've been avoiding it but I have to jump in here...
I
Amen.
- Original Message -
From: Jeremy Allen [EMAIL PROTECTED]
To: CF-Talk [EMAIL PROTECTED]
Sent: Wednesday, September 26, 2001 7:03 AM
Subject: RE: Check out what Gartner is recommending. Drop IIS!
It is not reasonably difficult to secure a system against
these worms. Every single
Now, I've always found Gartner to sway in a particular direction based in
the wind changes and the phases of the moon but this recommendation is just
plain stupid. Check it out:
http://news.cnet.com/news/0-1003-200-7294516.html
Rey Bango
~~
Your
]]
Sent: Tuesday, September 25, 2001 12:03 PM
To: CF-Talk
Subject: OT: Check out what Gartner is recommending. Drop IIS!
Now, I've always found Gartner to sway in a particular direction based in
the wind changes and the phases of the moon but this recommendation is just
plain stupid. Check it out
PROTECTED]
To: CF-Talk [EMAIL PROTECTED]
Sent: Tuesday, September 25, 2001 2:00 PM
Subject: RE: Check out what Gartner is recommending. Drop IIS!
When I read this from Gartner I rejoiced; check out how MS is responding @
http://www.theregister.co.uk/content/55/21869.html
Paul Sizemore
Finish Line
would be a good alternative.
- Original Message -
From: Rey Bango [EMAIL PROTECTED]
To: CF-Talk [EMAIL PROTECTED]
Sent: Wednesday, September 26, 2001 3:03 AM
Subject: OT: Check out what Gartner is recommending. Drop IIS!
Now, I've always found Gartner to sway in a particular direction
a thought,
Benjamin
PS maybe apache would be a good alternative.
- Original Message -
From: Rey Bango [EMAIL PROTECTED]
To: CF-Talk [EMAIL PROTECTED]
Sent: Wednesday, September 26, 2001 3:03 AM
Subject: OT: Check out what Gartner is recommending. Drop IIS!
Now, I've always found Gartner
they aren't a massive target like IIS is.
Benjamin
- Original Message -
From: Costas Piliotis [EMAIL PROTECTED]
To: CF-Talk [EMAIL PROTECTED]
Sent: Wednesday, September 26, 2001 6:19 AM
Subject: RE: Check out what Gartner is recommending. Drop IIS!
You know it's funny though. A quick search
My sentiments exactly, Costas.
Rey Bango...
- Original Message -
From: Costas Piliotis [EMAIL PROTECTED]
To: CF-Talk [EMAIL PROTECTED]
Sent: Tuesday, September 25, 2001 4:19 PM
Subject: RE: Check out what Gartner is recommending. Drop IIS!
You know it's funny though. A quick search
pants.
Just a thought,
Benjamin
PS maybe apache would be a good alternative.
- Original Message -
From: Rey Bango [EMAIL PROTECTED]
To: CF-Talk [EMAIL PROTECTED]
Sent: Wednesday, September 26, 2001 3:03 AM
Subject: OT: Check out what Gartner is recommending. Drop IIS!
Now
.
-Original Message-
From: Rey Bango [mailto:[EMAIL PROTECTED]]
Sent: Tuesday, September 25, 2001 1:59 PM
To: CF-Talk
Subject: Re: Check out what Gartner is recommending. Drop IIS!
Paul,
Rejoicing for a more secure product is certainly understandable but
Gartner's recommendation to dump IIS altogether
It comes down to responsible administration. We have watched this come and
still going on without incident and several IIS servers.
Tony Gruen
sfnetworks
~~
Structure your ColdFusion code with Fusebox. Get the official book at
words: UNIX. Morris. Worm.
---
Billy Cravens
Web Development, EDS
[EMAIL PROTECTED]
-Original Message-
From: Benjamin Falloon [mailto:[EMAIL PROTECTED]]
Sent: Tuesday, September 25, 2001 3:32 PM
To: CF-Talk
Subject: Re: Check out what Gartner is recommending. Drop IIS!
Sure, I'm
words: UNIX. Morris. Worm.
---
Billy Cravens
Web Development, EDS
[EMAIL PROTECTED]
-Original Message-
From: Benjamin Falloon [mailto:[EMAIL PROTECTED]]
Sent: Tuesday, September 25, 2001 3:32 PM
To: CF-Talk
Subject: Re: Check out what Gartner is recommending. Drop IIS!
Sure, I'm
Maybe a little OT, but my 2c.
...
I'm not a 'server' admin (by title) but I can thank MS for
this. If they released a tighter web server with less
vulnerabilities maybe there would be fewer viruses/hacks
that could penetrate. People shouldn't need to have to
patch every week.
...
Benjamin
- Original Message -
From: Costas Piliotis [EMAIL PROTECTED]
To: CF-Talk [EMAIL PROTECTED]
Sent: Wednesday, September 26, 2001 6:19 AM
Subject: RE: Check out what Gartner is recommending. Drop IIS!
You know it's funny though. A quick search at www.securiteam.com shows
other companies. But why all the hate? Look at all the good they
have done.
-Original Message-
From: Benjamin Falloon [mailto:[EMAIL PROTECTED]]
Sent: Tuesday, September 25, 2001 3:32 PM
To: CF-Talk
Subject: Re: Check out what Gartner is recommending. Drop IIS!
Sure, I'm not saying
-
From: Rey Bango [EMAIL PROTECTED]
To: CF-Talk [EMAIL PROTECTED]
Sent: Wednesday, September 26, 2001 6:22 AM
Subject: Re: Check out what Gartner is recommending. Drop IIS!
Thanks for the feedback bud but I still disagree. IIS and Microsoft are
just
the flavor of choice now for the cracker
these kind of bugs from being proliferated. :-D
Thanks
Jeremy Allen
elliptIQ Inc.
-Original Message-
From: Tony Gruen [mailto:[EMAIL PROTECTED]]
Sent: Tuesday, September 25, 2001 4:44 PM
To: CF-Talk
Subject: RE: Check out what Gartner is recommending. Drop IIS!
It comes down
incident and several IIS servers.
Rey Bango,..,,
- Original Message -
From: Paul Sizemore [EMAIL PROTECTED]
To: CF-Talk [EMAIL PROTECTED]
Sent: Tuesday, September 25, 2001 4:35 PM
Subject: RE: Check out what Gartner is recommending. Drop IIS!
We have a handful of servers that were
]
Sent: Wednesday, September 26, 2001 6:43 AM
Subject: RE: Check out what Gartner is recommending. Drop IIS!
At this point, this is probably true.
The security landscape changes with time, and as professionals, we must
change with it. We should be willing to learn other platforms if IIS
isn't
: Tuesday, September 25, 2001 3:54 PM
To: CF-Talk
Subject: RE: Check out what Gartner is recommending. Drop IIS!
Benjamin that is one of the best analogies I've heard. But back to what
Costas was saying. Why has Microsoft become such a target? Sure they
release overpriced, bloated, buggy products
.
Rey...
- Original Message -
From: Chris Martinez [EMAIL PROTECTED]
To: CF-Talk [EMAIL PROTECTED]
Sent: Tuesday, September 25, 2001 4:53 PM
Subject: RE: Check out what Gartner is recommending. Drop IIS!
Benjamin that is one of the best analogies I've heard. But back to what
Costas
Look at all the good they have done.
And what would that be? You listed all the things that they are already
noted before?
What good have they done? And please don't say Windows... because that idea
just came from somewhere else!!! It was those said 'shady business
practices' that got
Falloon [EMAIL PROTECTED]
To: CF-Talk [EMAIL PROTECTED]
Sent: Tuesday, September 25, 2001 4:59 PM
Subject: Re: Check out what Gartner is recommending. Drop IIS!
Lots of good points Rey,
I agree with you. I think my comments were perhaps aimed a little more at
MS
then at the article itself
PM
Subject: Re: Check out what Gartner is recommending. Drop IIS!
For fun, the next time someone mentions worms and IIS, and how *Nix is
the best alternative, say three words: UNIX. Morris. Worm.
huh?
cos' thats what they will say to me if I said that ;-)
- Original Message
]
To: CF-Talk [EMAIL PROTECTED]
Sent: Wednesday, September 26, 2001 6:43 AM
Subject: RE: Check out what Gartner is recommending. Drop IIS!
At this point, this is probably true.
The security landscape changes with time, and as professionals, we
must change with it. We should be willing to learn
All I can tell is that this discussion isn't about coldfusion.
Please move it to CF Community
-Original Message-
From: Rey Bango [mailto:[EMAIL PROTECTED]]
Sent: Tuesday, September 25, 2001 4:33 PM
To: CF-Talk
Subject: Re: Check out what Gartner is recommending. Drop IIS!
Chris
I got this in a newsletter today...He says IIS6 may be out by 1Q 2002.
IIS 6.0 is a complete paradigm shift; it provides an infrastructure
that installs security hotfixes by default. IIS 6.0 also lets you
download hotfixes and apply them automatically as they become
available.
IIS 6.0 includes
Hahah.. Too late
---
Billy Cravens
Web Development, EDS
[EMAIL PROTECTED]
-Original Message-
From: Rey Bango [mailto:[EMAIL PROTECTED]]
Sent: Tuesday, September 25, 2001 4:33 PM
To: CF-Talk
Subject: Re: Check out what Gartner is recommending. Drop IIS!
Chris,
We're not talking
Here's the bottom line. microsoft product rules. but microsoft sucks. not
the other way around
From: Rey Bango [EMAIL PROTECTED]
Reply-To: [EMAIL PROTECTED]
To: CF-Talk [EMAIL PROTECTED]
Subject: Re: Check out what Gartner is recommending. Drop IIS!
Date: Tue, 25 Sep 2001 17:46:53 -0400
Look at all the good they have done.
And what would that be? You listed all the things that they are already
noted before?
Nick,
He was being sarcastic.
Rey...
~~
Get the mailserver that powers this list at http://www.coolfusion.com
FAQ:
- Original Message -
From: Tony Gruen [EMAIL PROTECTED]
To: CF-Talk [EMAIL PROTECTED]
Sent: Tuesday, September 25, 2001 3:43 PM
Subject: RE: Check out what Gartner is recommending. Drop IIS!
It comes down to responsible administration. We have watched this come and
still going on without incident
seems to have a big ass target painted on it. Perhaps
Just call me Flamebait.
-Original Message-
From: Rey Bango [mailto:[EMAIL PROTECTED]]
Sent: Tuesday, September 25, 2001 4:33 PM
To: CF-Talk
Subject: Re: Check out what Gartner is recommending. Drop IIS!
Chris,
We're not talking
PLEASE MOVE THIS THREAD TO CF-COMMUNITY !
-Original Message-
From: Rey Bango [mailto:[EMAIL PROTECTED]]
Sent: Tuesday, September 25, 2001 3:00 PM
To: CF-Talk
Subject: Re: Check out what Gartner is recommending. Drop IIS!
Look at all the good they have done.
And what would
Yeah, I noticed. hehe. ;o)
Rey...
- Original Message -
From: Billy Cravens [EMAIL PROTECTED]
To: CF-Talk [EMAIL PROTECTED]
Sent: Tuesday, September 25, 2001 5:58 PM
Subject: RE: Check out what Gartner is recommending. Drop IIS!
Hahah.. Too late
---
Billy Cravens
Web
: Check out what Gartner is recommending. Drop IIS!
Look at all the good they have done.
And what would that be? You listed all the things that they are
already
noted before?
Nick,
He was being sarcastic.
Rey...
~~
Your ad could
OK, sorry
Gee, folks - would you please consider moving this to cf-community?
Thanks.
-Ben
-Original Message-
From: Rey Bango [mailto:[EMAIL PROTECTED]]
Sent: Tuesday, September 25, 2001 4:04 PM
To: CF-Talk
Subject: Re: Check out what Gartner is recommending. Drop IIS!
PLEASE MOVE
Anyone know of a check list for securing IIS 5.0 in conjunction with CF
5.0? I think I remember seeing one for 4.0 some time back, but can't
find a link. I am not totally sure of everything I CAN turn off or
what measures I can take beyond keeping up with the constant flow of
security patches.
Thanks dude! :o)
Rey...
- Original Message -
From: Braver, Ben [EMAIL PROTECTED]
To: CF-Talk [EMAIL PROTECTED]
Sent: Tuesday, September 25, 2001 7:20 PM
Subject: RE: Check out what Gartner is recommending. Drop IIS!
OK, sorry
Gee, folks - would you please consider moving
... do you really believe that IIS is as secure as apache etc?
No, I don't believe it is. The biggest security flaw with IIS (one that
can't be patched or fixed in the current releases, I don't think) is that it
runs within the SYSTEM security context - which is essentially equivalent to
, but far from optimal.
Jim
- Original Message -
From: [EMAIL PROTECTED]
To: CF-Talk [EMAIL PROTECTED]
Sent: Tuesday, September 25, 2001 3:31 PM
Subject: Re: Check out what Gartner is recommending. Drop IIS!
Sorry to open an additional can of worms, but our servers got nailed and
they're
Anyone know of a check list for securing IIS 5.0 in conjunction with CF
5.0?
Check this out:
http://www.microsoft.com/technet/treeview/default.asp?url=/technet/itsolutio
ns/security/tools/iis5chk.asp
HTH,
Nick Bourgeois
[EMAIL PROTECTED]
~~
Get
They were responsible for putting the Internet in the homes, which created
a large number of jobs.
At 07:43 AM 9/26/2001 +1000, you wrote:
Look at all the good they have done.
And what would that be? You listed all the things that they are already
noted before?
What good have they done?
I'll move this over to CF-Community and reply
On Wed, 26 Sep 2001 11:35, you wrote:
They were responsible for putting the Internet in the homes, which created
a large number of jobs.
At 07:43 AM 9/26/2001 +1000, you wrote:
Look at all the good they have done.
And what would that
: Rey Bango [EMAIL PROTECTED]
To: CF-Talk [EMAIL PROTECTED]
Sent: Wednesday, September 26, 2001 6:45 AM
Subject: Re: Check out what Gartner is recommending. Drop IIS!
My point is that you would have less exposure to risk running
alternatives
because they aren't a massive target like IIS
]
[connecting people, places and things]
-Original Message-
From: Benjamin Falloon [EMAIL PROTECTED]
Date: Wed, 26 Sep 2001 11:59:19 +1000
Subject: Re: Check out what Gartner is recommending. Drop IIS!
I've resent this email because it didn't go through earlier...
Very good
: Wednesday, September 26, 2001 6:45 AM
Subject: Re: Check out what Gartner is recommending. Drop IIS!
My point is that you would have less exposure to risk running
alternatives
because they aren't a massive target like IIS is.
Sorry bud but you're exposed with every server. I've got a T1
flavour of the month!
Regards,
Andrew Scott
-Original Message-
From: Benjamin Falloon [mailto:[EMAIL PROTECTED]]
Sent: Wednesday, 26 September 2001 5:42 AM
To: CF-Talk
Subject: Re: Check out what Gartner is recommending. Drop IIS!
Maybe a little OT, but my 2c.
I wouldn't call
Sandbox security for FTP, man about time:-)
Regards,
Andrew Scott
-Original Message-
From: Jon Hall [mailto:[EMAIL PROTECTED]]
Sent: Wednesday, 26 September 2001 8:00 AM
To: CF-Talk
Subject: Re: Check out what Gartner is recommending. Drop IIS! - IIS6
features
I got
: Rey Bango [EMAIL PROTECTED]
To: CF-Talk [EMAIL PROTECTED]
Sent: Wednesday, September 26, 2001 6:45 AM
Subject: Re: Check out what Gartner is recommending. Drop IIS!
My point is that you would have less exposure to risk running
alternatives
because they aren't a massive target like IIS
58 matches
Mail list logo
