I always think of the security of Apache not in terms of features provided, but number of eyeballs scrutinizing. Apache is SO widely used that I would think it is safe to say that exploits would be found sooner. Not enough people using Tomcat use the built-in HTTP stack, and so I wouldn't rely on it being completely exploit free (though our confidence level is pretty high, of course).
>>> [EMAIL PROTECTED] 1/14/04 3:42:00 AM >>> "achana" mentioned security. Well, Apache has more HTTP Authentication modules than Tomcat does (although JDBC realm can go against any DB). We dons't have Kerberos HTTP Auth (SPNEGO authentication method), which comes in handy with the deployment of Microsoft's Active Directory. Nix. --------------------------------------------------------------------- To unsubscribe, e-mail: [EMAIL PROTECTED] For additional commands, e-mail: [EMAIL PROTECTED] Jeff Tulley ([EMAIL PROTECTED]) (801)861-5322 Novell, Inc., The Leading Provider of Net Business Solutions http://www.novell.com --------------------------------------------------------------------- To unsubscribe, e-mail: [EMAIL PROTECTED] For additional commands, e-mail: [EMAIL PROTECTED]