-----BEGIN PGP SIGNED MESSAGE----- Hash: SHA1 Okay, it took me a long (expletive deleted) time, so I figured I should share. Here is a list of popular web sites running Apache, PHP, MySQL, and Linux. If there are any errors, I apologize. This is not meant to be a definitive work. In fact, I wasn't even planning on posting it... until i looked at the clock ;)
This list is designed to convice teh boss (no type-o). If your boss is a bandwagon kind of guy, afraid to take risks, this is for you- er- him. And you. Him in that he can read it, you in that if he accepts LAMP, you're life will be a much more joyous existance ;) - -------------------------------- Apache: By far the most popular web server, with 60.54% market share. Its closest competitor, Microsoft's IIS, has 28.89%. If all variants of each server are counted, Apache's install base increases to 62.17%, while IIS manages 29.42%). Statistics are from http://www.netcraft.net/survey Apache users: Yahoo! Amazon.com AltaVista BBC mp3.com SlashDot HP W3C IBM Verizon FEMA Infoseek PHP: In April 2002, PHP overtook ASP as the #1 server-side scripting language on the internet. In April, PHP was used by 24% of the sites on the Internet. Over the past two years PHP has averaged a 6.5% monthly growth rate. Source: zend.com/news/zendpr.php?id=49 PHP users: Cisco CMG Vodafone Motorola Siemens Ericsson CBS Unilever Philips BMC NTT Air Canada Lufthansa OnVista Lycos Europe Deutsche Bank NASA W3C MySQL: It isn't as easy to determine which database a site uses, but here is a list of sites that do use MySQL, according to MySQL.com: Yahoo! Finance Texas Instruments U.S. Census Bureau NASA Omaha Steaks Slashdot Cross Media Marketing Corp Powell's Books Department of Academic Information Systems Avacom Net Services Blue World Communications CoreSense Ericsson handy.de mobile.de Nemo-Q Silicon Storage Technology, Inc. Virage Linux: I can't find a list for this... I figured these out by trying big sites that came to mind. I didn't encounter a single Microsoft site, but I did get a few *BSD sites, and several Solaris sites. FBI Google Amazon AltaVista Slashdot Verizon FEMA CNN Security: Here's a list of security companies/groups that run any LAMP component: Security Focus (LA) Symantec (L) CERT (LA) Packet Storm (A) FBI (L) OSVDB (LA) At Stake (LA) Netcraft (LA) TESO (L) Phenoelit (LA) Doxpara (LAP) NGS Software (LAMP) PivX (LAP) Grey Magic (LAMP) Phrack (AP) *** It should be noted that just because a component doesn't appear in the list doesn't mean it's not running. The only way I could figure out MySQL was sending a SYN to TCP/3306. If I got a SYN|ACK, I put an M. MySQL could be (should be) firewalled off, and infosec people know this. Also, infosec people tend to play with banners (hehe look @ TESO's - teso.scene.at), so it's entirely possible they're hiding something... Out of all the infosec sites I tried, I managed to find two Microsofts: NAI and Verisign. I didn't bother with ntbugtraq, windowssecurity, etc- then again, I didn't bother with linuxsecurity, root prompt, etc. Only went with groups who pay attention to all OS's... Phrack and OSVDB are a little biased, but they are still cross-platform. -----BEGIN PGP SIGNATURE----- Version: GnuPG v1.0.7 (GNU/Linux) iD8DBQE9ygtO/rncFku1MdIRAmQpAJ9d+KkYSLhMriuZtI9jsjp3CAmZrACfaWJK Tf0R0hEMSICjAi6v9nz67GU= =Jj3Q -----END PGP SIGNATURE----- -- PHP General Mailing List (http://www.php.net/) To unsubscribe, visit: http://www.php.net/unsub.php
