Originally posted by: Slackware
Originally posted by: stash
Well, every distro is different, we use the stable tree, 2.4, others use other trees, we spend time on things, other ship it even before it hits beta.
In the 23 years that we have produced this distribution we have had 2 exploits that has been reportedly used.
Your turn.
The claim was that OSS is more secure because of the many eyes theory. For some reason you are restricting this to the Linux kernel, and ignoring the millions of lines of open source code that is not the Linux kernel. There are plenty of vulnerabilities that have been found and continue to be found in open source code. Many of the issues being found are identical to issues that were found in MS code and fixed already (WMF being one major example of this).
Whether a vulnerability has been exploited or not isn't relevant to the discussion of whether open source is more secure than closed source because of many eyes. The vulns do exist in open source, in great numbers.
No i am not, i am talking about the Slackware distribution, we have had 2 exploits that has been used against our distribution since 1993.
That includes the server code included in Slackware since 1993.
Now it is your turn, to be fair you have to open up a network, install office with outlook and the magnificent IIS from version 1.
No, you don't have to reply, it's hard being ridiculed i know, but you had to ask for it.
You picked the safest distribution of all distributions and there is a reason why we still stick to the old stable kernel tree.
Since 93 you have had W3, W3.1 W3.11 (with two or three underlying DOS versions) and after that you have had W95, W95OSR2 NT3.1, NT3.5 NT4.0 W98, W98SE, W2k, XP and start of Vista.
If you have had more than two used exploits on those with any of the software + outlook express and even the games, there have been exploits discovered in the gems too, haven't there, even though they were only three.
So if a bazillion is more than two, well then i win.
And perhaps open source and proper QC isn't such a bad thing after all?