Apologies if this has been seen already, but I didn't see it come across the list so I figure it's fair game...
Google recently looked at 70,000 domains world-wide and published the results of web server vice malware distribution. There are a couple of interesting things in the study, but what I found most interesting was that both IIS and Apache are responsible for 49% of the malware on the Internet respectively. However, since there are so many fewer IIS installations out there (Apache 66%, IIS 23%) that seems to indicate that ISS is churning out much more than its fair share of malware. Now whether that is through exploits or through being configured to provide malware isn't really obvious. Draw your own conclusions... http://googleonlinesecurity.blogspot.com/2007/06/web-server-software-and-malware.html Jon -- Key fingerprint: BDE0 DE52 B8C0 0CDF 7653 E5A2 D861 7877 0D3B 813E http://www.jonwatson.ca "Trying to learn to hack on a DOS or Windows machine or under MacOS is like trying to learn to dance while wearing a body cast" - ESR _______________________________________________ clug-talk mailing list [email protected] http://clug.ca/mailman/listinfo/clug-talk_clug.ca Mailing List Guidelines (http://clug.ca/ml_guidelines.php) **Please remove these lines when replying
