Subj : Re: IIS with Synchronet BBS: any problem? To : All From : Tracker1 Date : Tue Jan 01 2002 02:10 am "FRED BURGESS" I would never recommend IIS to anybody without making sure they are aware of > the possible Worms ... i.e. Code Red, Nimda, etc ... If you do install IIS, > then make sure you have downloaded and installed all of the available > patches from MickeySoft. > > My suggestion for a web server would be Apache (If you want free) ... If you > are willing to pay a few bucks, then I would suggest going with WINServer > from Santronics Software Inc. (www.santronics.com) a nice piece of work!!! > > Thank you > Fred Burgess > SysOp - TCL BBS > Come visit use www.tclbbs.com I think that people are already well aware of the worms out there.. also, the patch (which was a critical update on windowsupdate almost 2 MONTHS before the first worm hit, and all the worms exploited the same hole)... I had 12 servers under my control when the worms started hitting NONE of which was affected. Also, Client-Scripting in emails was dissabled, preventing the worm spreadings. It's not microsoft's fault that people didn't patch their software before the worm... that's what windowsupdate.microsoft.com is for, and critical update notification is for... if administrators that are PAID to keep servers running are neglectful in their responsibilities, that is their bosses' issue. IIS is one of the most expandable, flexable web servers out there.. you can do anything via asp that you can do in Wildcat.. which is a different bbs from synchronet, the subject thread, entirely. It's faster than any comparable web server under load... and easier to program for. standard languages vbscript, javascript, perlscript(via addon).. you can also setup php, and cgi-bin, as well as isapi applications directly. IIS Can be setup to service ANY standard browser... (many program ie centric, I do not)... you can also write custom services for use in data exchange. Pick up any book on ASP, and you will have just a glimps of what IIS is capable of.. Yes, there are potential for risk.. this is true of any webserver... or machine on the web.. goto www.cert.org, and see the holes in other platforms if you don't beleive me.. about half windows, half unix. Also, the hole that was exploited in iis also exists in other web softwares, it just happened to be exploited in iis.. it would be just as easy for people to exploit holes in apache/linux. ======================================================================= Michael J. Ryan - tracker1@theroughnecks.com aim: aztrackr1 - icq: 4935386 - Y!: tracker_1.rm - msn: see email ======================================================================= New Trillian version now available!!!! TRY IT NOW!!!! One program for aim/icq/yahoo/msn - http://www.trillian.cc/ .