> Yes, but did you actually verify their research using their methodology > to see if they screwed up?
Here's all the raw data you need to duplicate their report: http://people.redhat.com/mjc/ And yes, you do get significantly different results. Some commentary: http://blogs.redhat.com/people/archive/000201.html Mark -- Mark J Cox / Red Hat Security Response Team _______________________________________________ Full-Disclosure - We believe in it. Charter: http://lists.grok.org.uk/full-disclosure-charter.html Hosted and sponsored by Secunia - http://secunia.com/
