Mailinglist Archive: opensuse (4020 mails)
| < Previous | Next > |
20 Most Critical Internet Security Vulnerabilities
- From: doc <kd4e@xxxxxxxxxxx>
- Date: Sat, 09 Oct 2004 17:15:47 -0400
- Message-id: <41685503.7070107@xxxxxxxxxxx>
The new 20 Most Critical Internet Security Vulnerabilities updated
list just came out: http://www.sans.org/top20/
I was shocked to read the following on another list:
~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~
"Big suprise that BIND is at the top of the UNIX list :P
They even mentioned it by name unlike the horrible sendmail which
they just lumped in with the other buggy mail programs. This proves once again that absolutely ANY DNS server is better than BIND. Even Microsoft's."
~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~
Are Sendmail and BIND as bad as he implies or do I take this
as the grumblings of an uninformed person?
Or is it just a matter of vulnerability only if one does not
take proper care in the configuration phase?
I find it hard to believe that anything MS produces may be
secured to a superior level of a UNix/Linux app.
--
Thanks! & 73, doc kd4e
West Central Florida 100% Linux. Suse 9.1
Drake, Hallicrafters, Heathkit, TenTec, Yaesu
Radio Life: http://www.gospelcom.net/twr/
Linux-Incompatible hardware is defective!
USA Pres. Election 2004: http://www.rnc.org/
~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~
list just came out: http://www.sans.org/top20/
I was shocked to read the following on another list:
~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~
"Big suprise that BIND is at the top of the UNIX list :P
They even mentioned it by name unlike the horrible sendmail which
they just lumped in with the other buggy mail programs. This proves once again that absolutely ANY DNS server is better than BIND. Even Microsoft's."
~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~
Are Sendmail and BIND as bad as he implies or do I take this
as the grumblings of an uninformed person?
Or is it just a matter of vulnerability only if one does not
take proper care in the configuration phase?
I find it hard to believe that anything MS produces may be
secured to a superior level of a UNix/Linux app.
--
Thanks! & 73, doc kd4e
West Central Florida 100% Linux. Suse 9.1
Drake, Hallicrafters, Heathkit, TenTec, Yaesu
Radio Life: http://www.gospelcom.net/twr/
Linux-Incompatible hardware is defective!
USA Pres. Election 2004: http://www.rnc.org/
~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~
| < Previous | Next > |