Well, he doesn't sound like someone that listens to reasonable argument, so it might be pointless.
However, there have been far fewer security vulnerabilities in Aolserver than in Apache. Hopefully Jon Griffin will pipe in here about the current status of Aolserver security-wise.
A determined and knowledgeable hacker can get into almost anything. Very few script kiddies are targeting Aolserver, and when a vulnerability has been uncovered, it generally has been patched within a couple of hours.
You might ask this on the Aolserver mailing list as well. That's probably a better place to ask.
