Stories
Slash Boxes
Comments
NOTE: use Perl; is on undef hiatus. You can read content, but you can't post it. More info will be forthcoming forthcomingly.

All the Perl that's Practical to Extract and Report

use Perl Log In

Log In

[ Create a new account ]

cbrandtbuffalo (4462)

cbrandtbuffalo
  (email not shown publicly)

Perl programmer at the University at Buffalo.
Tuesday January 31, 2006
08:23 AM

Flaw in purportedly superior counting method

[ #28527 ]
I've been doing some research recently on usage of various tools on the internet and came across a survey of web servers and app servers on the web sites of fortune 1000 companies. In their explanation of why they approach is superior to the familiar Netcraft survey, they claim they are much more selective, and therefore more relevant.

My issue with this analysis is that it suggests that large fortune 1000 companies have only one web server, have made only one technology choice, and it is up for display at the front door. This is a fundamental flaw in their theory that their results are more significant than the Netcraft results. All they are showing is what these companies use at the front door. These sites don't typically do much aside from showing flashy pictures to visitors. Large companies have 10's if not 100's of other internal and external web sites for dealing with a variety of constituents. What are those other sites running?

Of course, it's very difficult or impossible to find out, but I'll bet there is a mix of technology across all large companies such that you can't make the blanket statement that Company X has chosen Apache or IIS. Life just isn't that simple.

The Fine Print: The following comments are owned by whoever posted them. We are not responsible for them in any way.
 Full
 Abbreviated
 Hidden
More | Login | Reply
Loading... please wait.
  • I agree that their approach is flawed. Our corp server is ASP and IIS but most of our service servers (that push most traffic) are Apache using Perl or Java. So their survey is great if you want to know what most fortune 1000 companies use for hosting generic corp websites. They are a M$ partner looking at making sure they can sell more M$ software and services.
  • I think it is even more telling that one of the companies products is an application which hides the IIS headers [port80software.com] so that crackers and script kiddies can't spot them as easily.

    After all, if it is such a superior web server, then why does it need to be hidden to avoid exploitation. Security through obscurity, *sigh*.

    - Stevan