[Info-vax] Using VMS for a web server

William Pechter pechter at S20.pechter.dyndns.org
Fri Jun 19 00:10:29 EDT 2015 

In article <cto3k5FesegU3 at mid.individual.net>,
Bill Gunshannon <billg999 at cs.uofs.edu> wrote:
>In article <ml5b1d$6ho$1 at dont-email.me>,
>	"Craig A. Berry" <craigberry at nospam.mac.com> writes:
>> On 6/8/15 10:29 AM, Bill Gunshannon wrote:
>> 
>>> Exactly.  I would never run a webserver on a machine that was intended
>>> to do the data processing for the business.
>> 
>> That makes it a bit awkward to run a business on a computer these days
>> where so much of running a business involves producing and consuming web
>> services.
>> 
>
>How so?  The web server can contact other systems on the network.  Why
>should I expose my database system to the world when nothing on it needs
>to be available until after some other system has processed it?  (just
>one example)  Think of the webserver as yet another corporate firewall.
>Having it on a system by itself with only limited access to other systems
>helps protrect them while still making anything the outside world needs
>to see available.  And, there are other reason for the one box - one
>application model.  That is one of the greatest powers of virtualization.
>
>bill

Perhaps I'm crazy but I always liked to put a firewall in front of the web
server and between the web server and the back end database server.

I have had some issues with software vendors about it -- they always found it
difficult to give up their magic secret undocumented ports their app used.
(Virtual Center and VMware often had timing issues that this would find as 
well as badly documented ports).

I always felt the databases need the most layer of firewall protection
and should be in a different protection zone than the web servers and 
app servers.


>
>-- 
>Bill Gunshannon          |  de-moc-ra-cy (di mok' ra see) n.  Three wolves
>billg999 at cs.scranton.edu |  and a sheep voting on what's for dinner.
>University of Scranton   |
>Scranton, Pennsylvania   |         #include <std.disclaimer.h>   


Bill
-- 
-- 
Digital had it then.  Don't you wish you could buy it now!
pechter-at-gmail.com  http://xkcd.com/705/

More information about the Info-vax mailing list