Is it secure? I mean IIS

by Volker Weber

It's not as if it's impossible to make software that's more secure. Wim Vandeputte, CTO of, a provider of trusted services, notes that the OpenBSD operating system he uses "hasn't suffered from a remote hole in the default install in over four years." In a similar vein, Gibson says, "The last serious remote-code execution vulnerability to hit the Apache Web server was back in 1997. But IIS has them monthly." Knowing that you may need to patch a product next month and again the month after doesn't make you feel as secure as using a product that's well-tested. Partially as a result, Apache server software enjoys twice IIS's market share in Netcraft's latest survey.

Microsoft has some of the world's best developers, but it still pushes some half-baked products.

More >


Old archive pages

I explain difficult concepts in simple ways. For free, and for money. Clue procurement and bullshit detection.


Paypal vowe