-----BEGIN PGP SIGNED MESSAGE----- Hash: SHA1 On Saturday 14 February 2004 01:39, Grendel wrote:
> Again it is a myth that windows is not secure as linux, I bet if you take > the bug reports of the systems and componenets (linux+apache+ssh etc vs > window and components) you will probably find the same number of bugs. > > We too have had our horrible bugs which people seem to be conviniently > forgetting, that bug which made every kernel prior to 2.4.23 able to be > rootkitted which was exploited to corrupt the debian servers. There was a > same bug in the 2.2.x releases which also did the same thing. There still > are a lot of people running kernels older that 2.4.22 unaware of the above > and still waiting to be rooted. > > If you take the componenets, sendmail was(is?) buggy as hell for years and > a major security risk, as was named, ssh etc. Yes OSS has had some quite serious bugs, sendmail and bind are horrible pieces of insecure crap (are/were ?), but their source code has always been available. People have managed to find as many, if not more, bugs in Windows without the source code. What will happen now that some/most/all of that is now available? Microsoft can no longer hide behind 'security through obscurity'. - -- Mike Williams -----BEGIN PGP SIGNATURE----- Version: GnuPG v1.2.3 (GNU/Linux) iD8DBQFALghpInuLMrk7bIwRAoCqAJ0WoYrEG2/JPXT9ITneLqDnJhf+awCgmWLX vq8cyyDr0qpiugEeIVbv/4A= =LwiO -----END PGP SIGNATURE----- -- [EMAIL PROTECTED] mailing list
