On Mon, 6 Dec 2004 00:24:38 -0500, Jim Davis
<[EMAIL PROTECTED]> wrote:
> As Sean said Apache has its share of patches for security issues well. But
> whether or not Apache (a server-side, presumably managed system) is more or
> less secure doesn't really enter into it.
They do release a lot of patches and there are quite a few security
bulletins; however, not all apply to all systems for example this came
in today:
Vendor: Apache Software Foundation
A vulnerability was reported in Apache running on an Apple HFS+
filesystem. A remote user may be able to directly access file data
or resource fork contents.
Impact: Disclosure of system information
Alert: http://securitytracker.com/alerts/2004/Dec/1012416.html
I don't run apache on OSX so this doesn't apply to me. Not to mention
_Remote Exploits_ are of far greater concern then local exploits...
Anyway the only point was that if the argument that greater usage =
greater / more deadly exploits were valid then apache would be
riddled... which it is not.
> The question is whether or not FireFox in mass use would reduce spyware -
> I'm not sure it would. It very well might - I just don't know.
IE installs software without your consent - so yes it would reduce it
(using logic and experience not stats). After I install firefox on
systems and run spybot a month or two later there isn't any spyware.
> But I assume, as we've seen for the past 10 years, that malware writers will
> continue to attack the largest installed base as a preference. When/if
> FireFox (or some other browser) becomes a big enough target it will be
> attacked as well.
See there's that its the largest install base thing again...
The main problem I think is that IE hooks right into your OS - the
thing the Department of justice told MS not to do... of course why
listen to them eh... - I understand change is hard, and we are not
really getting anywhere - you're not convincing me, and I am not
convincing you
Cheers Jim
--
~The cfml plug-in for eclipse~
http://cfeclipse.tigris.org
~open source xslt IDE~
http://treebeard.sourceforge.net
~open source XML database~
http://ashpool.sourceforge.net
~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~|
Special thanks to the CF Community Suite Silver Sponsor - New Atlanta
http://www.newatlanta.com
Message: http://www.houseoffusion.com/lists.cfm/link=i:4:186299
Archives: http://www.houseoffusion.com/cf_lists/threads.cfm/4
Subscription: http://www.houseoffusion.com/lists.cfm/link=s:4
Unsubscribe: http://www.houseoffusion.com/cf_lists/unsubscribe.cfm?user=89.70.4
Donations & Support: http://www.houseoffusion.com/tiny.cfm/54
