Reply to Message
Y'know.. as this site also no doubt runs similar software server side (apache-sql-php) for user comments/blogs/downloads etc.. it's probably vulnerable in exactly the same way. It doesn't really matter what OS a server runs when it's the web software which is attacked. SQL injections affect ANY site and server running SQL .. it's as simple as that really. The danger with M$ server OS stuff is how those exploits can let malicious people further than the web applications and into the core system... As linux servers are always run in a jail with the actual server OS fakerooted well away from any outside access the chances of a malicious hacker getting in are most remote.. not 100% impossible, but imho 80% less likely that a complete system hack when compared to the M$ rubbish.. It's always M$ servers that are spreading malware about in the wild.. never seen a linux mailserver attached to a website exploited yet in my 15 years as a sys-admin... saw 3 today on IIS sending spam/junk to my mail honeypot. *sigh* .. I guess it's like this.. ANY moron can install windoze server (somecrap) version.. often pirated.. and set up a website.. whereas to set up and configure a LAMP server takes at least a spell of RTFM, either while setting it up or beforehand.
The best of ZDNet, delivered
ZDNet Newsletters
Get the best of ZDNet delivered straight to your inbox
