Slashdot Mirror


News from ApacheCon US 2002

pdw writes "Apache Week this week has a feature detailing the happenings at last week's ApacheCon in Vegas. Read up to find out what's new in the world of Apache."

9 of 47 comments (clear)

  1. fp by Anonymous Coward · · Score: -1, Troll

    fp

    1. Re:fp by Anonymous Coward · · Score: -1, Troll

      Yup- and you missed fp by a full 2 minutes, which makes you a moron also.

  2. First? by Anonymous Coward · · Score: -1, Troll

    First? I always wanted to be

  3. This is what I learned by reading the article... by Anonymous Coward · · Score: -1, Troll

    "Latest News
    ApacheCon US 2002 is over!"

    With news like that, who needs to read more?

  4. Re:Sun is helping Apache... but where is Sun going by Anonymous Coward · · Score: -1, Troll

    I bet they end up sleeping with your mother.

  5. Re:This is what I learned by reading the article.. by Anonymous Coward · · Score: -1, Troll

    mod parent up pls

  6. Hmmmm... by Bluesman · · Score: -1, Troll

    Gee, there's not a whole lot to comment on. Oh well, I'll give it my best shot.

    These Apache guys code up a web server that's much better than Microsoft's IIS, by far, whew!

    And they're a lot smarter than George Bush. Zing!

    --
    If moderation could change anything, it would be illegal.
  7. A COMMENT TO ALL TROLLS by Anonymous Coward · · Score: -1, Troll

    Well, I've noticed that the trolls on slashdot are some of the best in the world, and I'd like to congradulate them. I've been to a lot of other sites and forums, and you don't see nearly this level of trolling. I find it quite enjoyable to take a fresh site's virginity with a goatse link, or a page widener, all tricks learned from slashdot. Now what I would like to see is some of the trolls get organized and perhaps do some work together, trolling small sites out of business or something. We really do have a great power, after all this training on slashdot, and I think that we could make a difference if we work together.

    TrollAxeThrower

  8. Most Unsecure OS? Yep, It's Linux by Anonymous Coward · · Score: -1, Troll

    November 26, 2002 | Paul Thurrott

    According to a new Aberdeen Group report, open-source solution Linux has surpassed Windows as the most vulnerable OS, contrary to the high-profile press Microsoft's security woes receive. Furthermore, the Aberdeen Group reports that more than 50 percent of all security advisories that CERT issued in the first 10 months of 2002 were for Linux and other open-source software solutions. The report muddles the argument that proprietary software such as Windows is inherently less secure than open solutions. And here's another blow to the status quo: Proprietary UNIX solutions were responsible for just as many security advisories as Linux in the same time period. Could Windows be the most secure mainstream OS available today?

    "Open-source software, commonly used in many versions of Linux, UNIX, and network routing equipment, is now the major source of elevated security vulnerabilities for IT buyers," the report reads. "Security advisories for open-source and Linux software accounted for 16 out of the 29 security advisories--about one of every two advisories--published for the first 10 months of 2002. During this same time, vulnerabilities affecting Microsoft products numbered seven, or about one in four of all advisories."

    The stunning report makes several claims that seem to fly in the face of widely accepted beliefs. First, the Aberdeen Group says that Windows-based Trojan horse attacks peaked in 2001, when CERT released six such advisories, then bottomed out this year, when CERT didn't issue any alerts. However, Trojan horse-based attacks on Linux, UNIX, and open-source projects jumped from one in 2001 to two in 2002. The Aberdeen Group says this information proves that Linux and UNIX are just as prone to Trojan horse attacks as any other OS, despite press reports to the contrary, and that Mac OS X, which is based on UNIX, is also vulnerable to such attacks. Even more troubling, perhaps, is the use of open-source software in routers, Web servers, firewalls, and other Internet-connected solutions. The Aberdeen Group says that this situation sets up these devices and software products to be "infectious carriers" that intruders can easily usurp.

    According to the Aberdeen Group, the open-source community's claim that it can fix security vulnerabilities more quickly than proprietary developers can means little. The group says that the open-source software and hardware solutions need more rigorous security testing before they're released to customers. This statement is particularly problematic because many Linux distributions lack the sophisticated automatic-update technologies modern Windows versions contain.

    We can rail against Microsoft and its security policies, but far more people and systems use Microsoft's software than the competition's software. I believe that we'll never know how secure Linux is, compared with Windows, until a comparable number of people and systems use Linux. But despite the fact that Linux isn't as prevalent as Windows, we're still seeing a dramatic increase in Linux security advisories today. I think the conclusion is obvious.