Re: M$ attack on Common Sense
Date: 09/14/03

Date: Sun, 14 Sep 2003 06:19:22 +0000 (UTC)

Max Burke writes:
> > scribbled:
> > Sure, Jean-David. There are a lot of effective solutions to the buffer
> > overrun problem. Some, as you point out, are quite straight
> > forward-even elegant in their simplicity.
> > My point was, though, that a quarter of a century old commercial
> > software company shouldn't be having these kinds of problems.
> Neither should Linux/OSS given that so many users [supposedly] eyeball
> the code to prevent such things happening.....
> Any Linux/OSS user want to explain why they still do happen in
> Linux/OSS?

But its unclear whether Linux has more bugs, or the OSS peer review of
code finds more-which are disclosed publicly. However, another
important URL:

where the CERT incident response team issued 15 advisories for
Microsoft products, 3 for Cisco, and 0 for all brands of Unix and
Linux, in the last 90 days.

But you are right. Both Linux and Microsoft have far too many security
bugs, in comparison to the other OSs like Solaris or the BSDs, or even

August was not a good month for Linux, either:

from a cracked systems POV. (Look at BSD's numbers in that page.)


John Conover,,