[Info-vax] Apache log rotation
Stephen Hoffman
seaohveh at hoffmanlabs.invalid
Sun Aug 12 07:42:52 EDT 2012
On 2012-08-12 11:24:16 +0000, Simon Clubley said:
> On 2012-08-12, Stephen Hoffman <seaohveh at hoffmanlabs.invalid> wrote:
>> On 2012-08-12 10:46:17 +0000, Simon Clubley said:
>>
>>> I'm seriously glad I moved off VMS Apache to Linux Apache many years ago.
>>
>> Tried nginx on Linux?
>>
>
> No. In a work environment, assuming core functionality requirements are met,
> it becomes more about running code which can be reasonably assumed to be
> trusted because it's vendor supplied and which has a reasonably guaranteed
> rapid update path when security problems occur.
I'm well aware of how organizations can tie themselves in whacking
great knots through managerial attempts at offloading potential risks
onto other entities through external payments. Management can love
these blame, err, risk insurance, err, risk transfer schemes, and more
than a few vendors make substantial revenues by providing a way for an
organization to make those payments to them.
> In addition to that, my public facing servers are locked down and have
> MAC policies (in this case, SELinux) enabled.
RHEL, CentOS and OL all have the NSA bits. Likely others. Probably
also a DMZ or two, as well.
> With that in mind, Apache gives me the functionality and performance
> I need as well as satisfying the work/production requirements I operate
> under.
So that would be a "no". Ok. If you're happy with Apache, I'd guess
no Lighttpd, either. :-)
--
Pure Personal Opinion | HoffmanLabs LLC
More information about the Info-vax
mailing list