From: "Nero, Nick" <[EMAIL PROTECTED]> Hmmm, some interesting omissions in your Microsoft-laden list are:
I'd hardly call is Microsoft laden when only 2 out of ten were MS products.
Apache (holes are found monthly)
True, but still about half those found in IIS so probably the better choice.
JVM (Sun just patched something like 2600 bugs)
I'm not worried about bugs, just vulnerabilities, and for that securityfocus lists ZERO, so I'm not too stressed about it.
Here's an updated list, only need to decide on one more. (not in order)
Microsoft Outlook & Outlook Express - Pretty much just all bad when used for email
Telnet - When used for remote control, use SSH instead for all but a few testing uses
Sendmail - Monolithic and too much root, use qmail or postfix instead
IIS Server - Constant updating required, really bad defaults
Wireless networking - Unless you're incredibly paranoid, though 802.1x looks promising
PHP - Mostly due to poor coding and the ease of writing insecure programs
R services (rsh, rcp, rlogin) - Just too darn old, use SSH instead
ActiveX - Mostly because of the apps associated with it rather than the protocol itself
BIND - Really bad history of problems, monolithic, too much root, use djbdns instead
???? - Still looking for one more
Chris Berry [EMAIL PROTECTED] Systems Administrator JM Associates
"Encrypt everything, and ask questions later."
_________________________________________________________________
MSN 8 helps eliminate e-mail viruses. Get 2 months FREE*. http://join.msn.com/?page=features/virus
---------------------------------------------------------------------------
Evaluating SSL VPNs' Consider NEOTERIS, chosen as leader by top analysts!
The Gartner Group just put Neoteris in the top of its Magic Quadrant,
while InStat has confirmed Neoteris as the leader in marketshare.
Find out why, and see how you can get plug-n-play secure remote access in
about an hour, with no client, server changes, or ongoing maintenance.
Visit us at: http://www.neoteris.com/promos/sf-6-9.htm
----------------------------------------------------------------------------
