Linked by Thom Holwerda on Fri 6th Jan 2006 22:56 UTC
Privacy, Security, Encryption Open source experts have hit back at a study published by the United States Computer Emergency Readiness Team that said more vulnerabilities were found in Linux/Unix than in Windows in 2005, labelling the report misleading and confusing. The report has attracted criticism from the open source community. Linux vendor Red Hat said the vulnerabilities had been miscategorised, and so could not be used to compare the relative security of Windows and Linux/Unix platforms.
Thread beginning with comment 82686
To view parent comment, click here.
To read all comments associated with this story, please click here.
RE[4]: this is ridiculous
by ivans on Sat 7th Jan 2006 02:24 UTC in reply to "RE[3]: this is ridiculous"
ivans
Member since:
2005-12-03

I'll explain with your own words:

I'll just say to you that there were no windows kernel-mode (ring0) shellcodes up until 8 months ago, and those for linux were written 7 years ago. And wanna know why? Because noone understood properly what windows kernel does

Class dissmissed.


And how is it that this invalidates my claim that open-source software is more prone to finding security flaws?

Reply Parent Score: 1

RE[5]: this is ridiculous
by ma_d on Sat 7th Jan 2006 03:57 in reply to "RE[4]: this is ridiculous"
ma_d Member since:
2005-06-29

The point is that it's not the software, it's the fact that it has available documentation.
The software is not more prone, there's just more information on how to exploit it.

Reply Parent Score: 1