On Wed, 3 Oct 2001 15:00:03 +1100 [EMAIL PROTECTED] wrote: > Statistics can be taken to mean whatever you like. This doesn't seem to > take account of the severity of particular vulnerabilities but I still > thought other Sluggers may find it interesting. > > > http://www.zdnet.com.au/newstech/os/story/0,2000024997,20260847,00.htm
I think there was a followup to this on http:://www.thregister.co.uk . Turns out many of the Linux bugs were found during code reviews but do not or did not have an exploit at the time the bug became known. Every single M$ bug became known due to an exploit. The other point raised is that the Linux bugs were patched in a matter of days while the M$ ones weren't fixed for weeks or months. Erik -- +-----------------------------------------------------------+ Erik de Castro Lopo [EMAIL PROTECTED] (Yes it's valid) +-----------------------------------------------------------+ "Hundreds of thousands of people couldn't care less about Kylix and what it runs on. It's there for the dying breed of die-hard Pascal fanatics who missed their 20 year window to migrate to C and C++." -- Kaz Kylheku in comp.os.linux.development.apps -- SLUG - Sydney Linux User Group Mailing List - http://slug.org.au/ More Info: http://lists.slug.org.au/listinfo/slug
