Dailydave mailing list archives

Previous By Date Next
Previous By Thread Next

Re: Graphing: Don't believe everything you see.

From: LMH <lmh () info-pull com>
Date: Wed, 7 Feb 2007 19:15:39 +0100
On 2/7/07, George Ou <george_ou () lanarchitect net> wrote:

Ok this is really stupid.  Why is it that Apache has so many more critical
flaws than IIS 6.0 then?

IIS 6.0
http://secunia.com/product/1438/?task=advisories

Apache 2.0
http://secunia.com/product/73/?task=advisories

Note that a lot of those Apache advisories are MULTIPLE exploits.


http://secunia.com/product/4661/

lighttpd "just" has 3 known "advisories" released there. And well,
running lighttpd on a production system and being concerned about
security is pretty much like walking nude in a donkey farm, fully
covered with pheromones.

Any 'study' done upon known statistics is already a flawed assumption
as a whole.

Not that I'm doing propaganda for Apache. Given that nowadays people
pretend to publicize mod_security and friends for improving the
security of their 'web applications' the situation isn't really nice,
for them.

Cheers.
_______________________________________________
Dailydave mailing list
Dailydave () lists immunitysec com
http://lists.immunitysec.com/mailman/listinfo/dailydave
Previous By Date Next
Previous By Thread Next

Current thread: