RE: Linux (OT)
by Charles A Upsdell <cupsdell(at)upsdell.com>
|
| Date: |
Fri, 07 Apr 2000 23:45:28 -0400 |
| To: |
hwg-techniques(at)mail.hwg.org |
| References: |
smalldogdesign |
| |
todo: View
Thread,
Original
|
|
At 10:06 AM 04/07/00, you wrote:
>On Fri, 7 Apr 2000, Eric J Hoffman wrote:
>
> > Yet the very same issues I receive from security firms speak of holes in
> > Linux and different flavors of Unix platforms. The important thing to
> > remember is that no platform is bulletproof; holes appear in all
> > flavors of web products in what I have seen....and it is just an issue
> > of due diligence in each sysadmin t protect each site.
>
>At least the kernel-level security holes in Linux are quickly fixed (since
>it's open source there's people all over the world that can work on fixing
>things like that, not just a tiny bunch in Redmond). Most of the other
>security holes are in the services that are bundled with the OS, not the
>OS itself. There's also other product security holes, but you get those
>with Windows too.
Actually, there was a report a month or so back on SecurityPortal.com about
the rapidity with which security problems were fixed in various operating
systems. The study showed that such problems were fixed more quickly in
Windows than in Linux. The conclusion of the study was that such problems
were NOT being fixed quickly enough in any operating system, and that steps
should be taken to fix them much faster in Linux.
-
Chuck Upsdell
Email: cupsdell(at)istar.ca or cupsdell(at)torfree.net
Website: http://home.istar.ca/~cupsdell/
HWG hwg-techniques mailing list archives,
maintained by Webmasters @ IWA