Re: FN-FORUM [OT] M$ XP...

date posted 10th January 2002 17:02

On Thu, 10 Jan 2002, David McEwen wrote:

> I just feel that the whole MS security holes thing is just an attack on the
> biggest target - it's no fun attacking open source because you can't see
> anyone squirm.

To a certain extent, you're right; it would be disingenuous for me to say
that this is NEVER the case...

> Attackers' egos want to see a result from their attack and
> the big companies are the ones that will get media coverage if they're
> attacked.

...but very often the same attackers/researchers do go after holes in
Free/Open Source software. It's just that there, because they have access to
the source, they'll often provide a fix as well. The author reads the
advisory, has the good grace and humility to accept the fix and release a
new version. Life goes on.

Best Regards,
Alex (BTW, please can we try and trim our replies a bit? ;-)
--
Alex Butcher Brainbench MVP for Internet Security: www.brainbench.com
Berkshire, UK Is *your* company hiring UNIX/Security/Pen. testing folks?
PGP/GnuPG ID:0x271fd950 http://www.cocoa.demon.co.uk/cv/