Net Manager
Network Managing, Engineering and Administration with an eye toward security.

Best practices meets the real world!

Tuesday, October 21, 2003  

Here's another wonderful quote from Microsoft: Linux not accountable for security, Ballmer says. He also throws the spector of hacking with this quote: "...why should code submitted randomly by some hacker in China and distributed by some open source project..". It's interesting to note that the facts are very different than the vision (or version) that he has. Microsoft has about a 3 to 1 lead in bugs, especially when it comes to remote exploits. In addition, with many of the Linux bugs patches are generated immediately and distributed ASAP. Microsoft now holds these patches for up to 30 days before releasing them. In the Open Source world, vendors usually tell you if theres a vulnerability and that code will be released ASAP. In Microsoft's world, you won't know until they decide to tell you. This is wonderful spin, but it doesn't address the real problems of patch management, nor does it address responsiveness, nor does it address the security of the base product. Ughhh....

posted by David | 10/21/2003 01:13:00 PM


Post a Comment

<< Home

News Links
Blog Links


Reading blogs at work? Click to escape to a suitable site!
Get Firefox

Site Meter

Powered by Blogger