The company I work with sells a J2EE application that runs on Tomcat, WebSphere, or WebLogic. We have a client that is trying to resolve between Tomcat and WebSphere. They are leaning toward WebSphere because they are worried that Tomcat has more security holes.
After searching the Internet, I could not find sites or studies that would compare the reliability of the main J2EE application servers in terms of security.
Can any of you point me to information comparing application server security holes?
, tomcat WebSphere, .
, 99% - , .
HTTP- Apache, IBM HTTP Server IIS?
, , webapp.
Tomcat
Websphere ( , , )
, " , Tomcat ". , , ? , FUD.
, -/ . , , . , SQL-, , - - , , .
, WebLogic - Java EE . WebSphere, , , , . Tomcat . , . , .
Spring dm Server Tomcat, Spring OSGi. , , .
, WebSphere , (, , Tomcat). , ( SecureID - ), . WebSphere .
, Glassfish. Tomcat , .
article, WebSphere Tomcat 5.5 . , , " ".
, Tomcat 60% , . , Tomcat . "Plain Vanilla" Tomcat - , , , , . Tcat MuleSoft. 100% Tomcat ( ), Tomcat.
, , , Tomcat, , . . , , .
Websphere, IBM, , . Webseal Tivoli WebSphere.