Full Disclosure mailing list archives
Vulnerability response times -- MS and others
From: "Alerta Redsegura" <alerta () redsegura com>
Date: Wed, 7 Apr 2004 18:15:00 -0500
A big issue here that has not been discussed is the time window between the release of a patch/upgrade and the ability to safely apply it in a live environment. Among my customers, many sysadmins just cannot apply the latest patches as soon as they are available because of possible dependencies with other vendor's commercial apps. This is not only true for Windows: in the last year, I have seen several Red Hat Linux installations where SendMail and OpenSSH patches could not be applied because of interference with 3rd-party applications run on these particular boxes. They had to wait until the third-party software manufacturers released their own upgrades to install the system's patches. Of course, A clear advantage *still present* in Linux is that you can do all the upgrades without rebooting, and even most of the times, without taking the services down more than 5 or 10 seconds. Regards, IƱigo Koch redsegura.com bggdh said: [snip]
Anyways... the report seems to indicate that Microsoft is the fastest on solving security issues. Comments? --Comparing Windows and Linux Security
_______________________________________________ Full-Disclosure - We believe in it. Charter: http://lists.netsys.com/full-disclosure-charter.html
Current thread:
- Vulnerability response times -- MS and others hggdh (Apr 07)
- Re: Vulnerability response times -- MS and others Valdis . Kletnieks (Apr 07)
- Re: Vulnerability response times -- MS and others Kerry Thompson (Apr 07)
- Vulnerability response times -- MS and others Alerta Redsegura (Apr 07)
- Re: Vulnerability response times -- MS and others Tim (Apr 07)
- Re: Vulnerability response times -- MS and others Szilveszter Adam (Apr 08)
- Re: Vulnerability response times -- MS and others Mark J Cox (Apr 08)
- <Possible follow-ups>
- RE: Vulnerability response times -- MS and others Rob Dijkshoorn (Apr 08)