>But without a list of vulnerabilities, this sounds to me like FUD. Fud implies intentional deceit, not the case.
Now that you have made me think about it then if security is your priority over performance then OpenHttpd certainly provides better protection of the TLS key and various server functions and leverages better OS protection at the cost of a vulnerability putting the OS at greater risk but an exploit in net/http would more likely give almost immediate ownership of the whole server but less likely the OS. Re-acting to vulnerabilities isn't security, avoiding their affect is. Using golang especially where great care cannot be afforded is one such way. Personally I wish net/http used more than one user and processes but it is still fantastic. -- You received this message because you are subscribed to the Google Groups "golang-nuts" group. To unsubscribe from this group and stop receiving emails from it, send an email to golang-nuts+unsubscr...@googlegroups.com. To view this discussion on the web visit https://groups.google.com/d/msgid/golang-nuts/FAD9D76F-CB4B-4815-AA52-2D68BBBE1659%40gmail.com.
