Yahoo!/ZDNet: IT bugs out over IIS security

According to this article, plenty of people are tired of Microsoft IIS's security problems, but inertia and the lack of qualified Unix security experts is holding back adoption of alternative platforms (read: Apache) in some shops:

"...Security consultancy @Stake Inc. estimates that IIS holds 25 percent of the market for enterprise Web servers, yet more than 50 percent of the Web sites listed on the Attrition.org archive of defaced sites are running IIS.

Despite the widespread perception of IIS as a nonsecure server, many customers say that, because it is the default Web server with Windows NT and Windows 2000 (news - web sites), it will remain their server of choice because they are too committed to Microsoft to make a switch practical or affordable. In real-world terms, this means large portions of the Internet will remain vulnerable as long as this attitude prevails.

"I would switch if I could convince my company to do it," said Jeff Nelson, network manager at Cleveland Motion Controls Inc., in Cleveland, and an IIS user. "It's hard to find good Unix (news - web sites) security guys, though. But [Microsoft's] new licensing policies do make dumping them a lot more attractive."

Complete Story

Related Stories:

• Apache Today: The May Netcraft survey is out: it's an Apache world!(Jun 01, 2001)
• Eric S. Raymond: Reliance on closed source for security considered harmful(May 15, 2001)
• ZDNet: A powerful serve [Zeus server review](Apr 21, 2001)
• The Register: Microsoft struts into Net security market; Would you buy a firewall from Bill?(Feb 19, 2001)
• IT World: Apache 2.0 Web server puts on new threads - Threaded multiprocess modes will improve request dispatch on Unix(Jan 16, 2001)
• VNU Net: Apache is chief on websites worldwide(Jul 06, 2000)
• IT-Analysis: Apache rules the web(Mar 24, 2000)
• WideOpenNews: Apache Grabs Two-Thirds of New Websites(Mar 22, 2000)