An unpatched kernel with theoretical holes exploitable with (typically) physical access to the box, vs a fully-patched Windows/Internet Explorer/Outlook setup that is still vulnerable to remote exploit on a near-weekly basis. I'm still way ahead of the Windows guy.
Now let's forget hypothetical and see what I've actually been unknowingly vulnerable to. According to Debian's [link|http://www.debian.org/security/2004/|Security advisories announced in 2004], there has been [link|http://www.debian.org/security/2004/dsa-514|one] known kernel exploit since May of this year. And it was for the 2.2 kernel on Sparc.
So, what was I wrong about? And what should I be admitting to the RedHat bigot with the assload of FUD?