In comp.arch Florian Weimer <fw@deneb.enyo.de> wrote:
> | Because of the richness of its tools, the plethora of programming
> | languages, and the ability of multiple users to be logged in at the
> | same time from remote sites over a network, the UNIX operating
> | system is a remarkably bad choice for running secure Web servers.
> | Because many PC-based operating systems share many of these
> | characteristics, they are also not very good choices. Experience
> | has shown that the most secure Web server is a computer that runs a
> | Web server and no other applications, that does not have a readily
> | accessible scripting language, and that does not support remote
> | logins. In practice, this describes an Apple Macintosh computer
> | running MacHTTP, WebStar, or a similar Web server. According to
> | recent surveys, such computers comprise as many as 15% of the Web
> | servers on the Internet.
>
> (Pre-X MacOS didn't even a decent virtual memory management, and no
> process separation. 8-)
Yeah, now imagine a buffer overrun in a cgi and what the result is 8-)
But I think there are enough problems also around efficent support
for multi-stream i/o that these OSs have traditionaly been lousy on.
Also 'no remote logins' makes administration so much more painful and
costly.
--
Sander
+++ Out of cheese error +++
|