Re: [inbox] Re: Linux (in)security

[Chris Ruvolo <chris+fulldisc () ruvolo net>]

On Thu, Oct 23, 2003 at 05:15:07PM -0500, Paul Schmehl wrote:
> In 2003 there have been 43 security advisories for SUSE Linux according to 
> SUSE's website:
> http://www.suse.com/de/security/announcements/index.html
>
> RedHat has had 53 during the same time period:
> https://rhn.redhat.com/errata/rh9-errata-security.html
>
> Debian has had 176 during the same time period:
> http://www.debian.org/security/2003/
>
> (Makes me wonder if the other vendors are really being honest.  Is Debian 
> that bad?  Or just much more thorough, forthright and conscientious than 
> the others?)

I think there are two factors in regard to Debian.  The first is that there
are many more packages in Debian than other distributions.  The second is
that there have been security audits of several programs.

Thanks to Steve Kemp for his auditing work.  See his results here:
        http://www.steve.org.uk/Debian/audited.html

-Chris

Attachment: _bin
Description: