On Mon, 13 Aug 2007 11:51:09 EDT, Alex Eckelberry said: > site:.edu or site:.gov as operators. It's clear it's far, far more of a > problem in the .edu space than at least .gov, largely because of the > reasons everyone knows (unpatched open source, etc.).
I don't think that "unpatched open source" is anywhere on the radar as a reason here. In both .edu and .gov spaces, unpatched Microsoft is a much bigger problem than unpatched open source (unless there's been some major tectonic plate shift and less than 90% of the boxes are Microsoft now). The *top* reason is probably that a higher percentage of .gov machines are on (semi-)private networks and/or behind fascist firewalls than .edu machines, because large chunks of .gov space have a mindset of "secrecy", while large areas of .edu space are about "sharing information".
pgpygnDmPx8Pq.pgp
Description: PGP signature
_______________________________________________ Fun and Misc security discussion for OT posts. https://linuxbox.org/cgi-bin/mailman/listinfo/funsec Note: funsec is a public and open mailing list.
