× The internal search function is temporarily non-functional. The current search engine is no longer viable and we are researching alternatives.
As a stop gap measure, we are using Google's custom search engine service.
If you know of an easy to use, open source, search engine ... please contact support@midrange.com.


  1.  Home
  2. MIDRANGE-L
  3. May 2004

Re: HTTP server

IIS server is number 1 on the Top Ten list of Microsoft vulnerabilities
compiled
by the FBI and NIPC. In fairness, I would add the Apache web server is
number
3 on the Unix Top Ten list. It is all a matter of implementation, but I
think general consensus
is that Apache is far more secure than IIS. In addition, the strength of the
iSeries
is that a denial of service against both servers, and the Windows server
will often
crash, but the iSeries will not.
If you look at netcraft's history of web servers, you will see a steady
migration away
from IIS (to Apache) for the above reasons.
http://www.sans.org/top20/#threats
I have client running AS400 webserver since 1999 in a small shop, with
minimal
firewall. It has never dropped. The network (Windows) has been hacked
multiple times,
fell over during redworm, comprimised by nimbda, and the as400 kept going,
taking
their web orders (all rpg/cgi programs). Nobody has to watch it. I keep the
ptf's up to date.

jim franz

----- Original Message ----- 
From: "Ingvaldson, Scott" <SIngvaldson@xxxxxxxxxxxx>
To: <midrange-l@xxxxxxxxxxxx>
Sent: Tuesday, May 18, 2004 8:58 AM
Subject: RE: HTTP server


> Let me get this straight, your client wants to migrate from HTTP server on
> the iSeries to IIS for security reasons?!
>
> Methinks there must be a better way to handle this....
>
> Regards,
>
> Scott Ingvaldson
> iSeries System Administrator
> GuideOne Insurance Group
>
> -----Original Message-----
> date: Mon, 17 May 2004 16:15:56 -0500
> from: "trevor perry" <trevorp@xxxxxxxxxxxxxxxx>
> subject: Re: HTTP server
>
> haha! As usual, I need to explain more.. I am not 100% sure on CGI and how
> it is invoked. I think I have an idea, but am looking here for help.
>
> A client of mine does not want the HTTP server on the iSeries to be
exposed
> to the web. So, by closing it down, the outside world cannot invoke the
RPG
> CGI programs. Since an IIS server is available, we can expose that to the
> web, and then the iSeries is protected.
>
> Now, the trick is, how do we get the RPG CGI programs invoked from the
> iSeries. I think it will require some translation tool that will read the
> request, re-direct it to the iSeries HTTP server, and then receive and
> re-direct the response.
>
> Another idea is to use a translation page to direct call the iSeries RPG
> program..
>
> I am looking for alternatives. Thanks for all the questions so far...
>
>
>
> ----- Original Message ----- 
> Subject: HTTP server
>
>
> > I am trying to determine if I can take an OS/400 HTTP server and replace
> it
> > with IIS running on a Windows server without any change to the
> applications.
> >
> > The biggest concern are the CGI programs that are running on the 400 -
how
> > do I ensure the correct authority when they are being called.
> >
> > Thanks in advance,
> > Trevor
>
> This message and accompanying documents are covered by the Electronic
> Communications Privacy Act, 18 U.S.C. §§ 2510-2521, and contains
information
> intended for the specified individual(s) only. This information is
> confidential. If you are not the intended recipient or an agent
responsible
> for delivering it to the intended recipient, you are hereby notified that
> you have received this document in error and that any review,
dissemination,
> copying, or the taking of any action based on the contents of this
> information is strictly prohibited. If you have received this
communication
> in error, please notify us immediately by e-mail, and delete the original
> message.
>
> _______________________________________________
> This is the Midrange Systems Technical Discussion (MIDRANGE-L) mailing
list
> To post a message email: MIDRANGE-L@xxxxxxxxxxxx
> To subscribe, unsubscribe, or change list options,
> visit: http://lists.midrange.com/mailman/listinfo/midrange-l
> or email: MIDRANGE-L-request@xxxxxxxxxxxx
> Before posting, please take a moment to review the archives
> at http://archive.midrange.com/midrange-l.
>
>

As an Amazon Associate we earn from qualifying purchases.

This thread ...
Follow-Ups:
Replies:
Follow On AppleNews
Return to Archive home page | Return to MIDRANGE.COM home page

This mailing list archive is Copyright 1997-2024 by midrange.com and David Gibbs as a compilation work. Use of the archive is restricted to research of a business or technical nature. Any other uses are prohibited. Full details are available on our policy page. If you have questions about this, please contact [javascript protected email address].

Operating expenses for this site are earned using the Amazon Associate program and Google Adsense.