IWETHEY v. 0.3.0 | TODO
1,095 registered users | 1 active user | 0 LpH | Statistics
Login | Create New User
IWETHEY Banner

Welcome to IWETHEY!

IWETHEY Home / IWETHEY Board / Patent Wars and Antitrust Forum / Windows/Linux security showdown.
Post #195,182
by Silverlock
2/17/05 1:51:57 PM
Reply
New Windows/Linux security showdown.
[link|http://seattletimes.nwsource.com/html/businesstechnology/2002182315_security17.html|Windows] wins.

They compared Windows Server 2003 and Red Hat Enterprise Server 3 running databases, scripting engines and Web servers (Microsoft's on one, the open source Apache on the other).

Their criteria included the number of reported vulnerabilities and their severity, as well as the number of patches issued and days of risk \ufffd the period from when a vulnerability is first reported to when a patch is issued.

On average, the Windows setup had just over 30 days of risk versus 71 days for the Red Hat setup, their study found.


What is wrong with this picture?
-----------------------------------------
"In this world of sin and sorrow there is always something to be thankful for. As for me, I rejoice that I am not a Republican."
-- H. L. Mencken
Post #195,185
by broomberg
2/17/05 2:14:10 PM
Reply
New What does this mean:

On average, the Windows setup had just over 30 days of risk versus 71 days for the Red Hat setup, their study found


It seems they are referring to vulnerabilities announced to patch release.

Crock'o'shit.

As before, it did not rate the vulnerability severity. When Linux vulnerabilities are announced, it is typically from people trolling through the source and noticing some that COULD be leveraged. Sometime a proof follows, sometimes not.

When MS vulnerabilities are announced, it is typically from people noticing that people already are breaking into their systems, which means it has been vulnerable FAR longer, they just don't want to admit it.

Or have I misread their core premise?
Post #195,186
by Silverlock
2/17/05 2:16:53 PM
Reply
New Until they publish the report we don't know.
The presentation was a preview of a report they plan to issue in 30 days.
-----------------------------------------
"In this world of sin and sorrow there is always something to be thankful for. As for me, I rejoice that I am not a Republican."
-- H. L. Mencken
Post #195,195
by tuberculosis
Picture of tuberculosis
2/17/05 3:08:25 PM
Reply
New In the same paper: "Clarke rips Microsoft over security" (new thread)
Created as new thread #195194 titled [link|/forums/render/content/show?contentid=195194|In the same paper: "Clarke rips Microsoft over security"]


"Whenever you find you are on the side of the majority, it is time to pause and reflect"   --Mark Twain

"The significant problems we face cannot be solved at the same level of thinking we were at when we created them."   --Albert Einstein

"This is still a dangerous world. It's a world of madmen and uncertainty and potential mental losses."   --George W. Bush
     Windows/Linux security showdown. - (Silverlock) - (3) - Feb. 17, 2005, 01:51:57 PM EST
         What does this mean: - (broomberg) - (1) - Feb. 17, 2005, 02:14:10 PM EST
             Until they publish the report we don't know. - (Silverlock) - Feb. 17, 2005, 02:16:53 PM EST
         In the same paper: "Clarke rips Microsoft over security" (new thread) - (tuberculosis) - Feb. 17, 2005, 03:08:25 PM EST

Coding all day leaves you in a state of mild aphasia as you look at people's faces while they're speaking and you don't know they've finished because there's no semicolon.
33 ms