Re: solaris 10. 'most' secure OS?
On Feb 1, 2008 5:14 PM, badeguruji <[EMAIL PROTECTED]> wrote: > From Sun's own mouth: > > ..."Solaris 10 OS, the most secure OS worldwide holding 176 records"... > > is that so? > > > ~~aapka kalyan ho~~ > > Doesn't MS say the same thing for Vista?
Re: solaris 10. 'most' secure OS?
2008/2/1, badeguruji <[EMAIL PROTECTED]>: > From Sun's own mouth: > ..."Solaris 10 OS, the most secure OS worldwide holding 176 records"... > > is that so? That they hold 176 records? Maybe. For the rest, see http://en.wikipedia.org/wiki/Evaluation_Assurance_Level#EAL5:_Semiformally_Designed_and_Tested Best Martin
Re: solaris 10. 'most' secure OS?
Richard Daemon wrote: On Feb 1, 2008 5:14 PM, badeguruji <[EMAIL PROTECTED]> wrote: From Sun's own mouth: ..."Solaris 10 OS, the most secure OS worldwide holding 176 records"... is that so? ~~aapka kalyan ho~~ Doesn't MS say the same thing for Vista? They all say the same thing and they are right in both cases. They just both remove the footnote that said in both series of tests and installation where that so, that it is not connected to the Internet. Neither are wrong in that case.
Re: solaris 10. 'most' secure OS?
On Friday 01 February 2008 17:14:59 you wrote: > From Sun's own mouth: > > ..."Solaris 10 OS, the most secure OS worldwide holding 176 records"... > > is that so? How many angels can argue on head of a pin? Thats a much more entertaining question... --STeve Andre'
Re: solaris 10. 'most' secure OS?
Richard Daemon schrieb: On Feb 1, 2008 5:14 PM, badeguruji <[EMAIL PROTECTED]> wrote: From Sun's own mouth: ..."Solaris 10 OS, the most secure OS worldwide holding 176 records"... is that so? ~~aapka kalyan ho~~ Doesn't MS say the same thing for Vista? compare and realize the difference Solaris Alerts on Sun's Security Blog (mind the sheer number of alerts for 2008) http://blogs.sun.com/security/category/alerts OpenBSD's Security Infos (every release counts for a 6 months period) http://www.openbsd.org/security.html#42 -- -=[rpe]=-
Re: solaris 10. 'most' secure OS?
That's okay, I saw a presentation that had a quote from RMS talking about how Sun is helping the F/OSS movement, and the presentation called RMS "an open source evangelist". Nearly choked to death on my lunch from laughing... Wish I still had a hand-out from that Sun presentation... That quote would go in my cube right next to my Dilbert comics... On Fri, Feb 1, 2008 at 10:59 PM, Daniel Ouellet <[EMAIL PROTECTED]> wrote: > > Richard Daemon wrote: > > On Feb 1, 2008 5:14 PM, badeguruji <[EMAIL PROTECTED]> wrote: > > > >> From Sun's own mouth: > >> > >> ..."Solaris 10 OS, the most secure OS worldwide holding 176 records"... > >> > >> is that so? > >> > >> > >> ~~aapka kalyan ho~~ > >> > >> > > > > Doesn't MS say the same thing for Vista? > > They all say the same thing and they are right in both cases. They just > both remove the footnote that said in both series of tests and > installation where that so, that it is not connected to the Internet. > > Neither are wrong in that case.
Re: solaris 10. 'most' secure OS?
I knew this picture would become handy when I took it at SL2008 ... http://www.evilkittens.org/~gilles/pictures/vrac/secure-solaris.jpg Gilles On Fri, Feb 01, 2008 at 11:44:10PM +, Bryan wrote: > That's okay, I saw a presentation that had a quote from RMS talking > about how Sun is helping the F/OSS movement, and the presentation > called RMS "an open source evangelist". Nearly choked to death on my > lunch from laughing... > > Wish I still had a hand-out from that Sun presentation... That quote > would go in my cube right next to my Dilbert comics... > > On Fri, Feb 1, 2008 at 10:59 PM, Daniel Ouellet <[EMAIL PROTECTED]> wrote: > > > > Richard Daemon wrote: > > > On Feb 1, 2008 5:14 PM, badeguruji <[EMAIL PROTECTED]> wrote: > > > > > >> From Sun's own mouth: > > >> > > >> ..."Solaris 10 OS, the most secure OS worldwide holding 176 records"... > > >> > > >> is that so? > > >> > > >> > > >> ~~aapka kalyan ho~~ > > >> > > >> > > > > > > Doesn't MS say the same thing for Vista? > > > > They all say the same thing and they are right in both cases. They just > > both remove the footnote that said in both series of tests and > > installation where that so, that it is not connected to the Internet. > > > > Neither are wrong in that case. > -- Gilles Chehade
Re: solaris 10. 'most' secure OS?
On Sat, 02 Feb 2008 01:24:44 +0100 Peichaer Robert <[EMAIL PROTECTED]> wrote: > Richard Daemon schrieb: > > On Feb 1, 2008 5:14 PM, badeguruji <[EMAIL PROTECTED]> wrote: > > > >> From Sun's own mouth: > >> > >> ..."Solaris 10 OS, the most secure OS worldwide holding 176 > >> records"... > >> > >> is that so? > >> > >> > >> ~~aapka kalyan ho~~ > >> > >> > > > > Doesn't MS say the same thing for Vista? > > > > compare and realize the difference > > Solaris Alerts on Sun's Security Blog (mind the sheer number of > alerts for 2008) > http://blogs.sun.com/security/category/alerts > > OpenBSD's Security Infos (every release counts for a 6 months period) > http://www.openbsd.org/security.html#42 Wait... compare what can really be compared: http://blogs.sun.com/security/category/alerts shows 4 types of things: - OS alerts - System DOS/DDOS vulnerabilities - Third party software vulnerabilities (WHO ARE IN THE BASE SYSTEM, say, sendmail for example) - Third party DOS/DDOS (WHO ARE IN THE BASE SYSTEM, say, sendmail for example) http://www.openbsd.org/security.html#42 shows 3 types of things: - OS alerts - Third party software vulnerabilities (Including stuff like firefox, etc...) - Third party DOS/DDOS (Including stuff like firefox, etc...) In openbsd world, DOS vulnerabilities are considered are reliability issues... So, for a good comparison, remove from sun's page all DOS vulnerabilities (or compare with obsd DOS vulnerabilities) and third party software (say, firefox, etc...) If you are looking for the system DOS/DDOS vulnerabilities of openbsd, it's here: http://www.openbsd.org/errata.html The fact is, you can't say third party softwares are the system so... - Remove third party software vulns, DOS/DDOS vulns for both OS - Add openbsd DOS to it's vulns (or remove solaris DOS vulns) Now, compare... Now, does that comparison really means anything ? I don't think so, for it to eventually mean anything, you'd have to perform a complete audit on both openbsd and sun's code, compare the number of relevant vulnerability report for both systems, check if sun has like openbsd a pro-active approach of security, comapre the number of users... Good luck in your quest to answer an unanswerable question... Pierre Ancelot.
