Horst Herb wrote:
>
>> You are right
> however that firewalls are not the appropriate defence here. Using a decent
> HTTP server is.
>
Horst, everything you say is right. But even using a decent
HTTP server, there are still going to be vulnerabilities and
risks that one must make a judgement on, for example, to
enable CGI directories.....
Even when you discount that, there will be a security flaw
discovered in whatever software you have installed. It's
the process of paying attention that I am concerned with.
How do you get people to pay attention? Or perhaps the
better question is, why should we expect people to pay
attention.
It come's back to this - one economic model of open source
involves paying for service. Security service is one such
thing to be paid for, continually. Giving folks the idea
that they can buy or download something, install it and
fifteen minutes later be protected is counter productive to
that model. And in fact, plays right into Microsoft's
model that you can be safe buying software from them, it's
easy to install and it get's you to task quickly.
