Slashdot Mirror
eWeek: Apache 2.0 Trumps IIS
AK47 writes "eWeek has a very positive review of Apache 2.0, entitled "Apache 2.0 Beats IIS at Its Own Game." They recommend the native Apache version on Windows over IIS for production use, citing superior security with no loss in performance."
We saw it with WinXP also...
And if it can run ASP, can it run it 'all the way' -- ie could you take any ASP page and run it from apache?
If it can handle ASP, there could be a lot of changeover. If not, then most 'hard core' M$ shops won't change.
autopr0n is like, down and stuff.
...Duh!
Strange women lying in ponds distributing swords is no basis for a system of government.
ZDNet officially confirms: IIS is dying
if only...
Yeah but, unless you hire an 'expensive expert' you can't write off the investment in apache. Thats the problem with free software.
heh. nevermind.
air and light and time and space
My only really big complaint about the eweek article is On Unix, don't expect a big performance boost with the new release. In tests of Apache 2.0 vs. Apache 1.3.24 running on Red Hat Inc.'s Red Hat Linux 7.2, performance was nearly identical (though still very good).
IMHO, Performance looks much better with 2.0. I wish that eweek did some more stressful testing of the new Apache.
This is not a dream, not a dream...we are transmitting from the year 1-9-9-9.
It's nice to see apache beating IIS on windows, but how does IIS compare to apache 2.0 running on linux? I can't find anything with a recent kernel, preferably post-2.4.10. Even an apache on windows vs apache on linux benchmark would be nice.
that IIS is not so much about raw speed and security as it is web services? That this is what microsoft is really pushing?
"unfriendly administration interface"
looks to be the only negative thing they could say about it.
In fact, it seems to be the only bad thing I ever hear these days about most open source programs.
What the hell is going on? Do we need to hire some UI consultants from Microsoft or something?
Applefans: I'm kidding
.sig last updated Jan. 14, 2000
After three years of development, Apache 2.0 (or, more accurately, Version 2.035) has finally been released. Unix users will find plenty to like in Version 2.0, but the biggest impact will be on Windows servers, where Apache can now perform as a production-level Web server.
I would hope no one was using the windows version for the last 3 years, this gives little reason to trash their unix to jump to windows.
Chicago2600.net more than a lifestyle, its a survival trait.
Been using it from beta for a month, no complaints.
Downside
When migrating to Apache2.0 do I have to use new config files or can I use my own.
Most places use IIS because they want to use ASP as their scripting language, instead of Perl/PHP. What is the performance like with an ASP parser?
I don't think too many people will switchover, if it means having to rewrite all their ASP code, or if using an ASP parser is slower than using IIS, especially since IIS is free (if you have Windows), whereas the chilisoft asp parser costs money.
I don't know of any other free asp parsers. But, if there were ones that offered comparable performance, I'm sure a lot of people would switch over.
"Knowledge makes us accountable." - Che Guevara
Ahh a free alternative that performs as fast as and more securely than a competitor. The good hting about this is how Apachae is worth the money and time, however IIS has many dynamic features that people like. Also IIS is easier to manage and maintain for an individual. My quesiton is, what are the pratical ramafications of a company completely moving away from IIS to Apache?
There is nothing wrong with being gay. It's getting caught where the trouble lies.
I work for a Forune 500 company as a web designer. In the past, we ran a dynamic intraweb for all of the developpers to chat about current projects. We did this at first using Perl under Apache. Performance sucked! Page load times would sometimes top out at 30 seconds. And it had uptimes that were as poor as slashdots. We eventually switched over to asp/iis on NT4. Page load times dropped to approximately 3 seconds, and the uptimes increased tenfold. And to top it all off, asp is not a nightmare to program in! Based off the very easy to use VB, I had the pages ported in a matter of minutes. What's not to like?
...What a bad article. Starting off by claiming Apache 2 outperforms IIS in their very own tests, yet making not one iota of these alleged "tests" available. Really an artivle like this does a dis-service to Apache and Linux, smacking of evangelism.
Height: 38U, Weight: 0 Newtons, Eyes: #0000FF, OS: Gray Matter 1.0 (Alpha)
The news blurb doesn't go into any detail as to HOW they benchmarked it (for all I know, they might've tested only static web pages and CGI applications)... does anyone know how well it runs ISAPI applications? And is it easy to set up to be able to run ISAPI applications?
(An ISAPI application is basically a DLL files that is loaded into memory and it stays in memory until it was 'halted' by an administrator, thus giving it a protential performance boost over CGI applications. That's the theory, anyway..)
Apache is the way to go. According to http://www.netcraft.com/, 9,522,954 active sites are running some version of Apache as of March 2002, versus only 3,966,743 active web sites that run some kind of Microsoft web server. Of course Apache is better, easier, faster and secure, but the numbers of active web sites running Apache versus Microsoft's number is just icing on the cake.
Also, they don't even bother to publish any real results, all they say is "Apache kept pace with IIS during the entire test"..WTF does that mean in reality? Were they using dynamic pages or static? What were the software and hardware configs like? Numbers please?
If this article were the other way around harping IIS over Apache 2.0, most Slashdotters would (rightly in that case too) be ripping it to shreds for being a flimsy piece of shit..Hopefully we can all see it for the garbage it is, even if in the end it supports our (well the majority of us, anyway) favorite web server.
I've always found it frustrating that the superior products produced by the Apache foundation are so sorely underrated by the mainstream media. Buzzwords like "BroadVision" and "WebSphere" are pounded into the heads of middle management by way of large advertising budgets. The truth is, however, that I can do anything a BroadVision developer can do *with no software cost whatsoever*
:-) from XSL:FO, Batik for building dynamic SVGs, and a ton of library code that makes building dynamic websites very easy.
Cocoon is a brilliant publishing system which combines many of the Apache projects: Xalan for XSLT transformations of all kinds, FOP for building dynamic PDFs (don't pay Adobe but use their format anyway
Not to mention, Apache has provided us with solid implementations of *many* w3c and Java specifications, including SOAP for XML based RPC, and JServ and Tomcat Java servlet engines.
My point is only this: appreciate The Apache Foundation because they totally rock!
std::disclaimer<std::legalese> sig=new std::disclaimer; sig->dump(); delete sig;
The article url is here. If you notice, it's asp. Maybe now that they've tested apache they will see the light and switch?
I'm a repairman in an imperfect world.
I have read a number of things about IIS6: mostly that it is a from-scratch rewrite, with a particular eye on security. Also you can assume it'll perform pretty well.
.NET Server (or whatever it's called this week) comes out.
So, as much as I would like to see the world dump IIS in general, a lot of shops out there will probably just wait and move to IIS6 when
They know how much is riding on this release. If IIS6 isn't tight, fast, and secure, then people will start jumping ship.
ZOMG I WOULD LOVE TO KNOW ABOUT YOUR FEELINGS ON MACINTOSH VERSUS WINDOWS, VI VERSUS EMACS, AND HOW YOU'RE NOT A DORK
I'm half of 2 person IT department. The environment was ASP on NT before I arrived and too much has been developed to switch now. We are small and busy and don't necessarily have 100% to give to keeping up with patches and MS Critical Updates - I would certainly be able to engineer a switch to Apache on Windows away from IIS so very easily if only there was ASP support.
should've been Apache 2.0 scalps IIS...
"Facts are meaningless. You could use facts to prove anything that's even remotely true." - Homer Simpson
So in essence, I agree with you that IIS is a better solution because you can get up and running faster. When you're relied on to get the information to your clients as quickly as you get it, every little bit helps.
Despite a general disdain for replying to my own post, here's a nifty little list of Why Free Software Usability Tends to Suck that I just noticed. In my experience, numbers 2 and 5, at least, are true.
Disclaimer: I've found the Apache interface on Windows to be far less irritating than IIS.
.sig last updated Jan. 14, 2000
And you must be the typical slashdot reader. Seriously, I'm starting to think you people have absolutely nothing to contribute to the discussion.
At least don't log on as anonymous!!!!!! 8(
Seriously, I don't even know why I even bother to ask even the least technical questions... is there some urge in all Linux users to tell people to RTFM?? Are you really feeling so smug and so suprior about your precious open-source operating system that you can't resist to urge to jump down the thoat of anybody who have questions or criticisms???
Sigh, news for nerds, indeed..
Comment removed based on user account deletion
ZDNet's eWeek has a very positive review of Apache 2.0, entitled "Apache 2.0 Beats IIS at Its Own Game."
That's right, folks! Apache is now just as insecure as IIS! Use it for all your virus-spreading, bandwidth hogging, easily-hackable website needs! It even comes installed with all of the dangerous features enabled by default!
What's that Mr. Gates? That isn't IIS's game? Well, I dunno... Maybe it should be. IIS is pretty good at it...
It's trivial to do the same thing in linux. Just use a named pipe and leave the backend running. It's an inherent capability not something that had to be added in later.
I've had enough abrasive sigs. Kittens are cute and fuzzy.
Easy there.. that guy was a troll.. keep in mind that the loudest voice doesn't necessarily represent the majority of the population.. most of the Linux users I talk to are pretty friendly folk, but usually the ones who are smug are smug in excess. I wouldn't fret that guy, just ignore him.
slashdot!=valid HTML
I think what IIS's game is is a matter of perspective. I think this reviewer defined it as running on Windows. No big deal really, but Apache did suck at this until recently.
As for this being a sucker job on Slashdot... if it had said, "IIS whumps Apache's A**", you can bet that they would have gotten at least as much traffic.
sigs are a waste of space
Dealing with .conf files instead of a GUI interface is an _advantage_ not a disadvantage. If we really needed a GUI frontend for making changes to a conf file there would be a bunch of them floating around. It takes no time to slap one together. In fact, IBM HTTP Server which is a "cutified" apache comes with a web form interface for configuring .conf files. Of course I've never seen anyone use it because it is quicker and easier to edit a text file than dig around in interface panels.
ASP.NET from the Microsoft.NET SDK is only loosely bound to IIS. There is one .dll (like an Apache module) that fowards all ASP.NET requests from IIS to a seperate HTTP Handler for C#/VB.NET ASP pages. Some people are all ready working on mod_aspnet to do the same forwarding under Apache.
:)
L8ers IIS
Nobody notiuced? :)
The URL of the article ends with ASP with means they use IIS themselves.
NetCraft also tells the same: The site www.eweek.com is running Microsoft-IIS/5.0 on Windows 2000.
Just like the recent MS anti-Unix site running BSD
MSDOS: 20+ years without remote hole in the default install
EWeek runs on iis. Netcraft says anyway.
So basically:
/. crowd would be jumping all over it - but nooooo, it's pro apache so obviously its right!
"unsubstantiated tests say that people we want traffic from our right!"
If this was a pro IIS article the
jeez people.
We run both, and of the two I can sya this - properly administred IIS 5 is pretty damn secure (never had a break in or infection yet) and ASP.NEt is the killer app of the next few years. Nothing under apache comes close.
*BSD sucked up all the arrogant assholes. Everyone knows the 'l33tist of the l33t use FreeBSD.
autopr0n is like, down and stuff.
One of these days PHP will support Apache 2.0 and then we can revisit these benchmarks. Until then I'll write this off as a Zdnet troll for Slashdot attention.
http://lists.ximian.com/archives/public/mono-list/ 2001-July/000233.html
I'm a big fan of Apache too, but this article is a piece of crap. They assert Apache 2.0 is as fast as IIS 5.0 on Windows but offer no benchmarks. They acknowledge that IIS had 10 security alerts this past week but offer no equivalent stat for Apache. (A thousand? Zero?) They don't even acknowledge that moving from IIS to Apache is a potentially career-ending chore. I love good reviews of OSS as much as the rest but this was more of a videobit than an actual article...
my preconcieved ideas. I will mark it as fact and cite it at meetings.
this post will remain anon.
But what game did they get beaten in with XP. Its a decent product. In fact the only problems I've had with it have been from Nvidia drivers.
You're right -- when one browses the Apache sites, it's AMAZING how much stuff they've done, most of which few people know about or appreciate.
Does anyone know of a good complete book on Apache, preferrably Apache 2 now that it's out, that covers most or all of these tools and puts it all together?
The ONLY problem is that it seems as though most Apache projects now use Java, which I could personally live without.
Yeah, the article is weak and has no details whatsover, but the average management schmo has little to no knowledge about how a product works anyway. They read mags like eWeek and base their decisions on just these kinds of articles.
:-D
So drop a copy on his desk with a little note about "same performance, better security." See how nice that sounds.
I wonder if open source programs are more secure then their microsoft cousins because open source actually helps weed out more bugs or if hacker community just has so much disdain fo microsoft that they concentrate all their energies on M$ products.
Veramocor
They recommend the native Apache version... Of course it's native - it's Apache!
Oranges, Apples.
Oranges because unix heads are generally bitter-that their infinitely superior operating system is often looked over as antiquated and requires "eXPensive eXPerts", and being hard to use, among other things.
Apples because the serpent (oops, I really meant salesperson--not) pitching Windows makes users expect to have a sweet eXPerience, flying over luscious green meadows, but in all reality do little that's actually useful.
In case you missed my point: Servers (oh the shiny pretty oranges) are not meant to be home or office computers (apples being too sweet to actually be good for you, damn those serpents.)
When you want do get work done, choose the right tool. Sometimes it's Windows, sometimes it's a Mac, and sometimes it's a 64 processor Sun, or IBM, or SGI, or what have you.
IMHO, Oranges are better tasting anyway.
Constitutional rights may be respected, repealed, or modified; but they must never be ignored.
I think it says something about the state of IT when they consider it
a downside that Apache doesn't have a point-and-click web-based
configuration tool.
The only advantage of such interfaces is that they're friendly to
novices, which is all well and good when you're dealing with a word
processor or e-mail client, but this is a web server. Anyone
who uses one for anything other than a toy needs to be (or to hire) a
skilled professional just to keep the thing running and up to date.
Anyone who finds editing a text file intimidating has no business
administrating any kind of server.
Heck--I wouldn't hire a web administrator who couldn't write
their own point-and-click configuration tool.
One of the reasons that Apache is so much more secure than IIS is that it's much more mature (version numbers aside). Does anyone have any figures on absolute number of security flaws to date?
Anyone who loves or hates any language, platform, or manufacturer, doesn't know what they're talking about.
...is the performance of Apache on UNIX compared to IIS running under WINE!!!!!
http://www.apache.org/server-status
Instead of "Apache beats IIS at its own game", they could've said "Apache beats IIS at the not-getting-0wned game". :)
Slashdot: come for the pedantry, stay for the condescension.
I know how to compile Apache to have FrontPage support in Linux (all be it Apache 1.3.19) but can Apache for Win32 support FP Extensions? Yeah I know drop FP alltogether but I have customers that know nothing other than FP for their sites.
1-3 isnt 10
If every HTML page view brings with it an average of 2 to 9 images, then yes, 10 simultaneous connections will serve only 1-3 simultaneous clients.
Will I retire or break 10K?
If I'm going to run Apache, why would I go through the hell of NT?
Most people who run NT/Server do so because of IIS, and it's ease of config. (let's not start a flame war here...) If you want Apache, use UNIX. There's no point is using a had to config OS (nt/5.0) if you aren't trying to use an easy to config HTTP server (iis/5.0).
-twb
I understand that the best security patch available for the Microsoft IIS server is only available at www.apache.org.
So with all of the patches to Microsoft IIS, doesn't that make it an A Patchy Server?
Obviously Apache will beat IIS at Apache's own game.
sic transit gloria mundi
I figure this is a joke, but far too many slashdot posters seem to think they understand accounting.
When you purchase software licenses, you are making a capital purchase, that will take at least 3 (and often 5) to depreciate. So the cash all flows out at once, but you have to write it out over 3 years.
Money spent on consultants look great on the balancesheet because they are expenses (and therefore written off immediately), plus they are considered one-time costs for public companies, and don't count as operating expenses. By creating permenant one-time costs (each one one-time of course), they are able to make their financials look better than they are.
With free software, your costs may be the same, but they are billed as consulting fees or maintenance agreements. All of those costs are easily considered either one-time costs or as regular costs. There are no capital expenses that need to be depreciated.
Alex
Get IIS and hire awfully cheap MCSE help? Let's see... that's $1500 in license fees, $36,000 salary and $13,000,000 lost profits - That'll be $13,037,500 on "your way out"!
Edition (no choice) and apparently I can't get IIS for it.
Took me about 2 seconds to head over to
Apache.org and try out v2.0 and so far it looks great.
Does anyone know if you can get IIS for Windows XP Home?
If not then tell me what MS is smoking.
Cause I don't care one way or another if it's IIS or Apache.
I'll use whatever I can download
and install quickly.
DISCLAIMER: I apologize for using Windows XP Home Edition.
Please don't reply to this email as I will be having myself taken outback
and shot.
Kinda weird that this website gave such a stunning review of Apache. Especially given that they switched their webserver from apache to IIS. Hrm.
"Quoting famous computer scientists out of context is the root of all evil (or at least most of it) in programming." - K
Apache is eons ahead of IIS in terms of usability and reliability, but the big fat problem is that IIS natively runs VBScript/ASP, while Apache does not (and Chilisoft doesn't always cut the mustard). Lots of companies are somewhat locked-in to IIS because of their existing VBScript code which they're not willing to port to PHP or Perl, either because of ignorance or lack of resources (time, money, brains). If we could somehow create a 99.9% functional VBScript parser for Apache, then Apache could swallow up a very large bunch of IIS users in one quick bite.
-Billco, Fnarg.com
Didja ever notice that the MS-controlled press always has some nice things to say about open source whenever Microsoft has a court date coming up?
It's more than a little suspicious.
Tired of FB/Google censorship? Visit UNCENSORED!
This is how I talk to my clients:
- You see? You will save 500 bucks because we're using free-as-in-beer software! Of course it is very, very difficult and normal people wouldn't even understand all the magical things which need to be done in order to set it up, but fortunately I'm a super hacker guru so this is your lucky day. My rates are only 300 bucks per hour, and this is not much for super hackers, so you'll pay much less than you'd pay for a more expensive super hacker for, say, 400 bucks per hour, so you already saved 200 bucks while we speak and you're gonna save another 50 grands in my rates netto...
- Wait a minute! But I can have a sixpack of MCSE's for $9.95 per hour!
- Too late! You signed the contract! SUCKER!!!
~shiny
WILL HACK FOR $$$
Let's see...$1200 or a custom tag...hmm....
the guy who keeps putting in these buffer exploits seriously needs to be fired.
it was funny the first 27 times
the only fact is that everything is an opinion
Before the flames start, I want to mention that I am a Unix-head. However in the interests of fairness, I would like to point out that whenever one introduces a new architecture, holes are bound occur. This article mentions Apache's track record on security. In my book thats a bunch of hoopla, especially when you do a massive rewrite. Apache 2.0's merits should be based on the software, not it's past record. It's a whole new slate ppl.
:-)
Please send flames to root@localhost
This article is filled with misinformation.
Somehow... the numbers don't add up.
Traditionally, IIS on Windows was the leader of the pack on static web serving, beating Apache on Linux by a factor of about 4.5 to 1, Windows (5500 req/s vs ~1200 req/s). Apache on Windows scrubbed the bottom of the graph at a measly 500 (yes, five hundred) req/s. Now, suddenly, Apache 2 for Windows is beating/matching IIS? That would effectively place it in the lead of every other web server on the market, free and commercial. Yet at the same time Apache for Linux and other Unicies is retaining "approximately the same performance." (~1200 req/s). So, what's the moral of the story here? Everyone running a unix box should throw it out, install a copy of NT or 2k and install Apache and be home free?
Of course not. The attitude of the journalist is evidently anti-MS.
Which would mean, if these numbers were in fact true (I don't remember reading any numbers in the article anyway), that Apache on Windows is about 4.5 times faster than it is on Linux and Unix.
Once again, it doesn't make sense. This guy is tying two granny knots with a loop, and it ain't happenin'.
I'd really like some information on these tests that they ran. What, did they run an ASP database call on IIS and compare it to a print "Hello, world\n"; perl script on Apache? Come on, there is obviously something fishy going on here.
I trust this article like I trust The Register... about as far as I can throw the box it's running on (and that, my geeky friends, is not very far at all).
Finally, results from an unbiased source - not endorsed/sponsored by a linux company, or Microsoft. This is when you can truly say, "Hey, look. Apache beat IIS in a fair contest." and no one can complain otherwise.
Great article... no stats.. no numbers... no data... just an opinion of un-published results... REAL concrete... thanx for convincing me to switch.
.conf file to whatever....
.NET with SQL 7 specs came out i swallowed my foot (which was in my mouth) and said screw it... im sticking with bezlebud as long as hes got the good shit.
.NET alone allows J# (a J++ implementation), C#, VB, JS, and an unlimited amount of other languages (provided you get the pack necesary).
.NET scares the hell out of me, cause it may actualy be Java done right, except with unlimited languages....
I use IIS because i like satan, and i also like setting up and modeling client websites within minutes... if not less. I like that with ASP.NET i can run a huge hunk of languages with nearly zilch time spent configuring... i like knowing that when i remotly develop someones site and all i have is a name/password, i wont have to know how to set the servers default
People SEVERLY underesitimate how important ease of use in ALL fields is... The easier to use.. the quicker to produce.. the quicker to produce the less money wasted and the more time working... I was gonna go completly anti-MS, but once
My number one thing... When Apache supports as many languages NATIVLY without a quigillion config changes / additional installs... ill be hopping the fence... But right now
--Idiots, Every single one of YOU, A flaming mass of conglomerated morons, hey wait a second, isnt that how RAID works?
Use PHP instead of ASP. I've programmed in both, and frankly PHP works better. It integrates seemlessly with MySQL, compared to ASP-MSSQL/Access where I had to define a dsn connection with several lines of code. There are reports taht PHP runs faster than ASP, but I haven't ran my own tests. PHP isn't hard to learn. The good folks at www.php.net give a full documentation of the language, as well as a tutorial. Try finding that on M$ website
$cat
if you get alot of shitty smaller sites youll likely get windows(or linux) . so there will be more windows servers.
to the next extreme when you are using a mainframe,
you only need one and its worth thousands of PC's.
unix is in between.
I wonder how many noticed the slashdot effect in the poll sidebar .. a pretty handy *cough.damn.near.everybody* percentage of sampled readers appear to be migrating to Linux and Apache 2.0?
I think ASP is a pretty good framework for developing web based applications. Don't get me wrong, I *LOVE* PERL, but there are a lot of times when ASP is a good tool for the job.
.CONF files. I hate the fact that IIS is so insecure (the amount of various IIS automated exploit attacks that my SNORT detects is amazing). I would love to migrate from IIS to Apache *IF* I could be able to port the ASP code with a minimum of changes.
While I enjoy the admin interface to IIS, I'm not intimidated by
I've heard a few people make some generalized comments about this -- the general gist of which seem to be that it works for small and simple pages but not more complicated applications. Can anyone provide me with some more specific examples?
For example, what about a fictitious VBscript O.O. (i.e. using VBscript classes) application that uses ADO to call stored procedures on a SQL server?
Another example, what about a VBscript-based application that made use of COM objects?
What sort of caveats have you ran into when porting?
Evolution: love it or leave it
There's nothing in human experience compared to which a sendmail config file could be considered simple. Thank god for the oreilly reference.
IIS was faster serving static content, Apache was faster serving dynamic content.
I wouldn't expect IIS 6 to be that much faster. More secure, probably, given the attention that this aspect of the product has received in the past. The central flaw in the app has almost always been in ISAPI filters. Unicode escaping bugs are mildly nasty, but they've seldom been the showstoppers that the buffer overflows in various filters have been.
Also disastrous for them has been the fact that the overflows generally tend to be in the context of the system user (for the unfamiliar, it's a [usually] non interactive account with privledges ABOVE that of the Administrator account [can kill any process, for instance]). I particularly wonder if they'll be able to address this issue with IIS6. I suspect that changing this will have negative consequences for performance (just a guess; I don't have one of those shared source licenses so I could tell for sure).
The ASP.NET web.config files are already XML based; I guess it's nice. There's lots of options, you can tell they're trying to seem like there's more to their server products than simple admin interfaces for morons.
[reply moderation: +1 funny +1 pun]
moderating the only way i know how
the only fact is that everything is an opinion
Step 1 learn how to spell.
Step 2 learn learn learn
www.gentoo.org
I think Apache is a very good free program... But it does lack some of IIS's features. For example, it just doesn't support the Nimda or Code Red worms, at all.
Berto
One question that popped up in my mind while reading the article is: why doesn't the apache team use .xml files for the configuration files like almost every other server these days? ie: weblogic,tomcat,etc..
.conf 's, but also to keep the mainstream masses happy... I'm sure it'll be easier for us oss developers to come up with nice gui interfaces to manage the server by reading xml files rather than parsing the .conf files.
Not only do I find editing xml easier than
[alk]
Everyone seems to be talking about linux/unix requiring expensive experts. What about mcses? How much does the average msce make? The figures I have seen indicate 40K-60K or more just in Ohio alone. Microsoft seems to be telling everyone what they want to hear, hopefully, people stop and think about what they are saying. Microsoft requires expensive people too. So you pay 1 expensive unix expert to maintain a server pool or 5 msces to maintain all the extra servers, apply service packs, tweak servers, etc. What's the difference? Where's the tco? And if msces make in the same range as most of the expensive unix experts, where is the savings? Let's say you switch from unix to ms on servers. You will save on licensing costs compared to unix. Now you hire 5 msces x 40000/yr = 200000/yr. If anyone needs a unix expert, I will work for 1/4 of that. Microsoft tells mcses, "if you get certified, you will make great money $40-60K+." While at the same time, they tell cfos, "if you use our solution, you can hire an mcse and pay him next to nothing to maintain our solution." ms seems to spew pr double-talk. Hopefully cios/cfos are aware enough to see past it. Death to buzzwords! Remember, no one ever got fired for buying microsoft. But they never found a way to lower there tco either.
I've had to learn Linux administration the hard way -- no comp sci background -- but I find Apache one of the easier programs to configure and understand. Though many linux programs are starting to get GUIs, I find the speed and flexibility of the text files unbeatable. You can't get much clearer than well commented text. However, text is more comfortable for some, GUIs for others.
If GUI based configuration tools can serve as a transitory step to allow users the option of learning more about the underlying tools, that would be a good thing. But even if that transition isn't made, both interfaces need to stay up to date with all functionality.
Beta is broken and the link to classic doesn't work. Stop wasting our time or there won't be anybody left here.
Not really. The dotcom crash had less to do with to do with the internal accounting of various companies, and a lot more do to with the world no longer getting suckered by the investment banks that created the dotcom craze in the first place.
When the Netscape IPO shocked Wall Street by going through the roof in only one day, investment groups scrambled to be the ones to bring forward the next "promising high-tech IPO" in hopes of getting rich off all the speculations. When the next few high-tech IPO's also had big opening days, the miracle became a business plan, and soon there were individuals and organizations who depended entirely on the machine they had collectively created of churning out new high-tech companies. Often times, options on the soon-to-be-released companies were used to buy favors (i.e., talk up a few other companies we will be releasing soon on various financial talk shows, etc).
When the findings of fact came out against Microsoft, Microsoft's share value slipped a little. Since Microsoft is considered a bell-weather stock on the vast majority of tech indexes, this slippage lowered confidence in the whole industry, which in turn led to a lot of day traders and speculators to cool on the emerging IPO's. Soon, the lame new companies like pets.com were gone, and few new lame companies were capturing VC's interest.
Now, if you want to make money in a tech startup, you have to actually sell something people would want to buy. In the long run, we all knew it would come to this anyway. Its probably better for everybody that the bandage was torn from our collective hairy chests quickly rather than slowly, dontcha think?
Information wants to be anthropomorphized.
I'm a Microsoft-product-user, sue me, and IIS' design is IMHO ok, however if I could switch this minute, why wouldn't I? Well... I can't run an ASP.NET application on Apache. (shouldn't be that hard to implement however, the ASP.NET runtime is a separate process) So there is no WAY I can switch to apache.
'same performance, better security'... Hot air to me, sorry. 'Same performance', I have to see that first, and 'better security'... people who have locked down their IIS webservers the way it should be and the way Unix admins do normally, don't have to worry. Sure, you have to patch the webserver sometimes. Like you have to patch other software as well. Don't kid yourself with the idea that Apache is 'total secure'. You don't have proof of that.
Never underestimate the relief of true separation of Religion and State.
I mean, it'd be nice if ZDNet at least TRIED to hide it's bias against MS and it's agend to ebarass them.
For example, the comment/article about the "10 new security vulnerabilities in IIS!"
What ZDNet fails to tell you, the obvious, is that what MS released was a "Cumulative Patch for IIS" which is all the patches released since IIS 4 was released.
Rather than installing a Win2K server and then having to track down the dozen or so patches, you can just apply this.
There have not been any new vulnerabilities in IIS since May 2001. Almost a year ago!
(Note: there has been a 1 or 2 vulns. found in Index Server and one or two in SMTP, both optional components of IIS, and not related to the web-serving W3SVC portion).
Why does ZDNet lie so flat-out like this?
What contest would that be smart guy? They don't even mention how they compared the two servers.
"Apache kept pace with IIS during the entire test, which means that sites that move from IIS to Apache 2.0 on Windows won't have to worry about taking a performance hit."
Kept pace, not better performance, just because its apache dosent mean its better, deal with it.
I'm sure /.ers will have a field day with this topic.
PHP is cryptic and slow. Just check out the stats on the shootout pages. PHP routinely gets stomped in the tests by perl, Java, Ruby and Python. Seeing as how you can write an ASP in perl, vbScript, or ECMAScript, I dare say an ASP solution would win as well.Several? Try two.
Sorry. ASP is a framework, PHP is a language. I seriously doubt that PHP has that much of an edge over vbscript, but if I decide to write an ASP with C#, your PHP script is *doomed*.
According to several articles I read a while ago it should be fairly straightforward to have ASP.Net running on any web server.
If that happen then it's likely that Apache 2.0 will be taken far more seriously my MS only shops because you will be able to combine the best of both worlds.
Why does Microsoft's ASP.Net use web.config text files for its settings? Let's face facts, they're both pretty good and Apache seems to be more secure. If you're an MS shop though, IIS is almost certainly the way to go because it would easier to integrate
I'm running Apache 2.0.35 and php 4.3.0-dev (CVS checkout from last night) right now. Flawless install. I've setup apache from source many many times and Apache 2.0.x leaves 1.3.x for dead. Very Cool.
http://home.y3m.net/ if you want to bang on it.
No, I did not read the f***ing article!
Comment removed based on user account deletion
I realize there is a development version of mod_perl for this version of apache. Has anybody heard about when it will be released as "production" quality code?
See the other story about MS's patents that are licensed to prohibit interaction with GPL and LGPL software.
There's a couple of reasons. First is you don't have to write your own parser. Many fine XML parsers exist and can be plugged into just about any language. Secondly, the idea of XML is to produce well-formed, structurally correct documents. Kind of important for configuration files I think. Sure, you can still screw up the config itself with your Apache front-end program but having to worry about writing the correct format back is one less thing to program around.
Yes, everything is in relation to Microsoft.
KLIK? But I don't use KDE.
--- Hindsight is 20/20, but walking backwards is not the answer.
We've been running Apache with Perl scripts against a Sybase database quite successfully now for the past three years or so. The Perl scripts are robust and (for Perl) - easy to understand and maintain. They were well written and designed in the first place.
But now, management has decided that it is worth the effort to convert from Apache -> IIS and from Perl -> ASP/VB and from Sybase -> MS SQL Server.
The reason seems to be that this company has decided that a 100% pure Microsoft setup is better than a free, well written, more secure system. They're already having problems accomplishing some of what we already do with the existing code, and are bringing in MS consultants to help reinvent the wheel!
Best of luck Apache - it was great working with ya!
I came into a job last year that has one main app using ASP. Since I got there I've built everything with PHP. So, until I get time to port this ASP app to PHP, I'm stuck with IIS 5.0 and downloading security updates every week.
On a recent project meeting so many requirements begain by visiting the Apache web sites and CPAN that we came up with a catch phrase for this: "time to raid the treasure chest."
It's a bit giddy, digging through all the free and excellent software.
Post may contain irony: discontinue use if experiencing mood swings, nausea or elevated blood pressure.
If open source is really about giving people choices, then give them more than one option.
-- Slashdot: When Public Access TV Says "No"
Seriously, Oracle seems to get a lot of mileage with a single codebase for their "Universal Installer" and "Enterprise Manager" which are cross-platform Java Applets/Applications.
Apache should take a page from this book and silence this UI debate forever.
The only problem is that Apache is then condemned to including a JRE with their distribution forever, just like Oracle.
Or maybe we should just convince Oracle to do it for us?
I have worked on both iis and apache systems web server for the same reason. I am only 18 years old, but, yet, somehow i was able to edit a config file w00t!
Really, how hard is it to edit the config file, all you have to do is read and have basic knowledge in linux. For gods sake their are 14 year old kids running unix
> administration is done by editing .conf files
.htaccess files means that
IIS:
all config done by GUI
migrating a site is Very Hard
migration tools miss things
like multiple host headers,
IP-based access restrictions
no
you have to right-click on
every dir that *might* have
special IP/user restrictions
then click on properties, jot
down what you see so you can
right-click, click, type on
the other server.
Apache:
all config done by text files
migrating is as easy as cp
or (worst case copy/paste)
-matt
cd /usr/bin/apache
./httpd
ps -aux
Hmmm... I see a few Apache processes here, and this is 1.3... is ZDNet still as dumb as they have always been or am I missing something here? Has Apache perviously been missing some features that would be required to qualify it as POSIX compliant? It sounds like this sentence is trying to "lie without lying". Or, since IANAUE (*Unix Expert), there may be something about POSIX I missed.
Things like this are the reason the only time I ever use C|Net/ZDNet is for downoad.com.
CAn'T CompreHend SARcaSm?
Because a brain-damaged monkey (read: anybody) could learn and use ASP in about 2 weeks of effort. I learned all I really use in ASP in less than a week. There's low cost fo training your people: "ASP for Dummies" is usally sufficient. I've had the (dis)pleasure of using Chilisoft before to build an app on a linux box (and yes, I lobbied for PHP but management said no). I did enjoy that it ran the whole app with only a little tweaking, but it was a pain to install. And COM components I wanted to use? Forget it. Chilisoft provides an ADO interface and I think a FileScriptingObject; anything else you're SOL. Until Apache has a way to implement a COM interface (OMG that's a nasty thought) so random components some company has dreamed up can be used, a lot of existing installs will stay with IIS so they don't have to rewrite things a JavaBeans. It's a matter of inertia, not security.
Eeeeeeeeewwwwwwwwwww....
Whitespace is not a syntactical element.
So because Linux was already better tuned as an OS for Web serving, the new Apache, which compensates for less capable OS's such as Solaris, AIX and Windows, takes away performance advantage of Linux. This will result in a fragmenting of the Web OS market, and less Linux innovation, hindering the world economy. Do the Apache developers have no shame?
"with their freedom lost all virtue lose" - Milton
Everyone is always saying that apache is difficult to configure and that IIS is a piece of cake.
But the true question is: Do you want a lamer that can't read a manual and edit a configfile appropriately, to administer your dear webserver???
I mean I'm not against usability this or that,
but for god's sake. You only have to edit a config file. If the admins are too stupid for that then they shouldn't be administering something...
True or not?
Comanche anyone? I remember using this tool to configure my Apache boxen long ago. I since got used to editing .conf files in vi. Still, the article makes mention that there's no GUI. I beg to differ! I don't know if it supports Apache 2.0 yet, but there's a windows binary for 1.3. Just wait, and the GUI will come.
There is no reasonable defense against an idiot with an agenda
:wq
Well this sucks. I'm not even finished with 'Apache the Definitive Guide for 1.3.3, 2nd ed', and now I have to buy a WHOLE NEW book! If they weren't $35 bucks apiece, I wouldn't bitch. But $35 bucks for a 350 page book is a little much. that's $.10 a page! I wonder how many of the directives I had to learn are still in use. Oh, and good thing I haven't learned the API yet. Feel sorry for you poor MOD authors.
"
#ifndef NEW_VER
#define NEW_VER "damn/you/oreilly/:wtf/.?:heres/my/35/you/bastard
#endif
Actually, more and more of the patches from MS don't require reboots. They've started listing whether a reboot is required under the "Additional Information" section of the security bulletins... See ms02-018 for an example. No reboot needed on IIS 5.
$35 bucks? somebody get that man a waaaahmbulance and tell him to stay out of a 4 year college.
I'd love to pay 35 bucks per book. Even better, I'd like to pay 35 bucks for a book that would be as useful as an o'reilly book.
There are some people that if they don't know, you can't tell 'em.
[Win2k/XP Pro's IIS] can simultaneously service 10 different IP addresses
In that case, it can be trivially circumvented with a cheap proxy.
Will I retire or break 10K?
I hear what you are saying.. and you are right.
Having worked many years with a certain brand you mentioned in your post (at the company developing the product), I've become rather indoctrinated when it comes to my company's tools and solutions. To be honest, these products are no better or worse than anything else you might be able to find in the OSS community, just as complex or even more so than OSS counter parts when you look past pretty UIs and start planning or implementing whatever it was you wanted the product for in the first place. That the "industry" is engaged in the "feature game" at the expense of other areas of improvements doesn't help much either other than sales.
The main difference between an OSS solution and one from a large company is A) management at a customer *knows* they will be able to get support for the product in the future, B) They have someone to nag at if they are not satisfied with whatever it may be and C) the product cost an insanely amount of money (and some draw a false conclusion that expense at purchase == quality).
FYI: We have been using ALOT of OSS software during customer engagements (especially from the Apache foundation) due to their high quality, speedy enhancements and FULL SOURCE (which we don't always get even from our laboratories which develop our "cutting edge" software).
I can only echo what you say by agreeing that anything we can do with most any commercial software out there (including our own), we can do just as well with OSS software. On the other hand, there is quite a gap between "being able to run" a product and fully exploiting a products strengths. This takes knowledge and experience and most companies don't possess that. This all lead to "OSS is excellent to top-of-the-crop people", but the same is also true for expensive commercial products. The difference is probably that commercial sw is quicker than an OSS counterpart, to get up doing *anything* (i.e. the invested cost in learning "hello world" is cheaper with commercial products), but when you actually set out to do more advanced stuff, the intellectual investment is probably about the same.
To conclude, the more I see the world, the more companies I visit and the more engagements I'm at, the more I stand puzzled about our customer's corporate decisions. They purchase expensive hw and sw from us, but they still need many many consulting hours, which we are more than happy to provide, to get the most (or at times, *anything*) out of their acquisitions. Our products have a life span, meaning that if the customers want any kind of support from us, after 1 - 2 versions, it's upgrade time or an expensive service agreement since we won't (and economically can't) support older products. In the end, If you have the skills, OSS is by far the most bang for the bucks and probably the lesser headache during upgr. cycles. If you have swelling pockets instead, sure you can contract the vendors' consultants getting their products buzzing. It's all about skills, ambition, money and marketing.
In a society that believes in nothing, fear becomes the only agenda ~ Bill Durodié
ASP.NET really isn't all that great. I've built several applications using it, and it's good for people like my boss who last did simple asp programming, don't rememeber anything about coding, and are scared of anything without a gui. The object oriented page stuff is nice, I guess, event driven and all. Grave doubts about the scallability.
Don't let the secretary fuck with the website if she can't grasp the concept of files on the webserver being at a remote site, not on her computer, and requiring you go get a copy, change it, then put back where you got it from. What's wrong with the concept of "Being able to understand what the fuck you're doing before doing it publically?" Is it too much to ask that the website get updated by someone who understands what they're doing, just a little?
for using phpTriad last year.
I swear, I just can't get it right. I must be a visionary or something.
and I agree with alot of the people here- I had a heck of a time trying to configure sql server 2k- I'm guessing IIS configures much the same way.
I'll take a config file over that mess any day.
Looking for Book Reviews? Check out Literary Escapism.
Most of my accounting is in Quickbooks and somewhat self learned. There are two parts to my comment, which I believe is what confused you.
:)
If you buy software, you acquire assets. That's fine on the balance sheet, cash goes down, assets go up. This is neat in that it doesn't show a cost, but bad in that you lost cash. Companies can show profits each quarter and go bankrupt, or lose money each quarter and do fine. All that really matters is the cash. The rest of that statement is for figuring out what is going on. The depreciation issue is mostly a tax issue. If I spend $20k on software licenses that I need to depreciate over 5 years, I lose $4k in assets each year and get to reduce them from my tax burden. This is fine, except that the $20k is gone now, but I pay taxes on it. This can create a situation where a company is paying taxes on cash that is gone, and if you don't have the cash for the tax bill... again, cash is king. Capital expenditures are bad from a cash and tax perspective, they aren't fundamentally evil.
The reason you that you mess with these issues is a desire to minimize your tax burden. Getting a tax writeoff in the same year that you spent the money isn't dot-com accounting, its trying to minimize the tax burden.
The whole asset accounting is relatively worthless. It makes sense in certain industrial applications where the assets are machinery where there REALLY IS a market for second-hand equipment (unlike computers that lose 50% when you drive them off the lot), or land which doesn't depreciate, even though you write off the building over 10 years.
Keep in mind with software licenses, you can't really sell them, so you make your balance sheets look artificial when you show these terrific assets...
Alex
You know, these anti-ms/anti-linux bickering is so exhausting. What is the point really? I've seen less conviction at a Jehovah's Witness convention.
Send the waaahmbulance over to Borders Book Store. I did the college thing years ago, and got the $27,000 dollar t-shirt.
WILL RENDER FOR FOOD!
Lisa: Superliminal?
L.T. Smash: I'll show you. (opens window) HEY YOU! JOIN THE NAVY!
Carl: Uh, yeah, alright.
Lenny: I'm in!
Sorry, couldn't resist.
Al Qaeda has ninjas!
in fact, i'm developing a new management system to the micro$oft win32 platform. such as HPOV\Webmin all apache 1.3.20 mod_perl 1.25 mod_jk based! works fine for me.. daahh..
-JAPAN: ol yor beys ar bilong tu as! -AH!
Did you read the entire article? There was a link near the end that said "Click here for the test results" and it pointed directly to some nice graphs.
cpeterso
If we could somehow create a 99.9% functional VBScript parser for Apache, then Apache could swallow up a very large bunch of IIS users in one quick bite.
If someone wrote a GPL'd VBScript interpreter, I wonder what Microsoft would do. That would be a huge affront to IIS lock-in and a big win for Apache! Perhaps Microsoft has some VBScript patent to protect their proprietary language..?
cpeterso
wait a second. Whats wrong with Mozilla and rendering? The only pages that don't run right are Popup ads that i turn off! i've had none, nada, zilch rendering errors in Moz since about 9.7. I use Hotmail and browse msn and see no errors. I don't know what pages you're talking about, but as far as i'm concerned Mozilla is _there_ .
Who is this Anonymous Coward character, how does he post so much, and why is he always such a whore?
yeah, what happened to honor among trolls?