If you can't trust public visitors from the internet, who can you trust? Executing user input as commands inside the operating system is the most direct way to get things done, and that's what matters most. Isn't it?
It's not really using DOS, just the Batch interpreter of Windows shell (cmd.exe in NT). Some core source files are written in C# and VB, and there are referneces to VS 2003 in an XML config file.
Furthermore, AFAIK, DOSBox has no TCP/IP capabilities, but it emulates IPX and null/modem connections on top of the host's network stack.
Edit, from the tutorial:
/snip/ All the files you need for a modern MVC
application. Built on batch files.
IIS is a little hard to control from the console,
so you'll need to open IIS manager and register
your site manually. Read the sidebar about how
to do that.
(If we were using apache, tomcat or webrick we'd
be able to do this from the command-line with
ease. If I took this project more seriously, I
would have written a custom DOS-based web-server.
But then I guess I would've been an even more
depraved individual, so for now we're stuck with
IIS.)
I can't wait for COBOL on Crank. Or Assembly on Acid.
(Sorry. I just had to do that. Don't know what's wrong with me today.)
Good stuff. Many times you can say more with satire than you can with diplomacy. Other times you're just being snarky. Tough call.