Re: Scary report on OSS/Linux security

From: Erik Ljungstroem (erikDOTljungstrom@metalab.unc.edu)
Date: 11/28/02

Next message: Joe Schaefer: "Re: Scary report on OSS/Linux security"
Previous message: Fredderic: "Re: Linux - Poster child for security glitches"
In reply to: Gerry Van Donkersgoed: "Scary report on OSS/Linux security"
Next in thread: Joe Schaefer: "Re: Scary report on OSS/Linux security"
Reply: Joe Schaefer: "Re: Scary report on OSS/Linux security"
Reply: Nico Kadel-Garcia: "Re: Scary report on OSS/Linux security"
Reply: Kasper Dupont: "Re: Scary report on OSS/Linux security"
Messages sorted by: [ date ] [ thread ] [ subject ] [ author ] [ attachment ]

From: "Erik Ljungstroem" <erikDOTljungstrom@metalab.unc.edu>
Date: Thu, 28 Nov 2002 17:24:30 GMT

On Tue, 19 Nov 2002 19:36:33 +0000, Gerry Van Donkersgoed wrote:

> Quote from the article
> "Study: Linux's Security Problems Outstrip Microsoft's"
> NewsFactor Network (11/15/02); Maguire, James
> at http://www.newsfactor.com/perl/story/19996.html

[-snip-]

> That doesn't sound very good... Any comments ?

One thing people tend to forget in discussions like this, is the
fact that open source itself means that anyone can read the code
and analyse it. It is by far easier to discover security holes
with the code in front of you, rather when it isn't.

I could bet any of my body parts, that the list of security
holes in Microsoft products would increase by hundreds of percent
if a handfull of hackers got their hands on the code.

And as someone else in this thread mentioned, the amount of
software available has a factor in this. Can someone find
like 50 open source ftp servers for Windows? Guess not!

This leaves me with no other option than reach the same conclution,
as a lot of others have, this is pure bs!

-- 
	-> Erik Ljungstroem (erik.ljungstrom@metalab.unc.edu)
	-> http://www.northernmost.org
	-> Norrköping, Sweden

Next message: Joe Schaefer: "Re: Scary report on OSS/Linux security"
Previous message: Fredderic: "Re: Linux - Poster child for security glitches"
In reply to: Gerry Van Donkersgoed: "Scary report on OSS/Linux security"
Next in thread: Joe Schaefer: "Re: Scary report on OSS/Linux security"
Reply: Joe Schaefer: "Re: Scary report on OSS/Linux security"
Reply: Nico Kadel-Garcia: "Re: Scary report on OSS/Linux security"
Reply: Kasper Dupont: "Re: Scary report on OSS/Linux security"
Messages sorted by: [ date ] [ thread ] [ subject ] [ author ] [ attachment ]

Relevant Pages

Re: I guess this is one way to attract customers to DB2...
... IBM says it has 'no plans' to open-source DB2 database ... Well the quote was true, however we see a lot of back peddling. ... IBM pulled Cloudscape resources and support from Derby ... You also tend to lose control of the product when it goes Open Source. ...
(comp.databases.informix)
Re: Soft IPs licensing -gpl
... > they refer to the GPL licence but after having read it on ... Software Council's Open Source Summit. ... Quote: "to facilitate a dialog between professionals who are engaged ...
(comp.arch.fpga)
Re: PPS, (PowerPoint slide) viewer on hpux
... > With "open source" software, you are given access to the source code ... [Start quote:] ... OpenOffice.org is a multiplatform and multilingual office suite and an ... the, correct, use of "multiplatform". ...
(comp.sys.hp.hpux)
RE: [Info-ingres] OR available?
... I was passed this quote ... "OpenROAD is not open source at the moment, so that's probably why you have ... UNIX, C, Panther, Ingres, Interbase, Firebird - Available Shortly ...
(comp.databases.ingres)
Re: [opensuse] vmware server and sound
... I installed XP in virtualbox and it works (the sound) ... one point for open source :-)) ...
(SuSE)