[SLE] 20 Most Critical Internet Security Vulnerabilities

From: doc (kd4e_at_verizon.net)
Date: 10/09/04

  • Next message: Herman Knief: "Re: [SLE] Ok Raid-1 is beggining to scare me BIG TIME!!"
    Date: Sat, 09 Oct 2004 17:15:47 -0400
    To: SuSE-Discussion <suse-linux-e@suse.com>
    
    

    The new 20 Most Critical Internet Security Vulnerabilities updated
    list just came out: http://www.sans.org/top20/

    I was shocked to read the following on another list:
    ~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~
    "Big suprise that BIND is at the top of the UNIX list :P
    They even mentioned it by name unlike the horrible sendmail which
    they just lumped in with the other buggy mail programs. This proves
    once again that absolutely ANY DNS server is better than BIND. Even
    Microsoft's."
    ~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~

    Are Sendmail and BIND as bad as he implies or do I take this
    as the grumblings of an uninformed person?

    Or is it just a matter of vulnerability only if one does not
    take proper care in the configuration phase?

    I find it hard to believe that anything MS produces may be
    secured to a superior level of a UNix/Linux app.

    -- 
    Thanks! & 73, doc kd4e
    West Central Florida  100% Linux.  Suse 9.1
    Drake, Hallicrafters, Heathkit, TenTec, Yaesu
    Radio Life: http://www.gospelcom.net/twr/
    Linux-Incompatible hardware is defective!
    USA Pres. Election 2004: http://www.rnc.org/
    ~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~
    -- 
    Check the headers for your unsubscription address
    For additional commands send e-mail to suse-linux-e-help@suse.com
    Also check the archives at http://lists.suse.com
    Please read the FAQs: suse-linux-e-faq@suse.com
    

  • Next message: Herman Knief: "Re: [SLE] Ok Raid-1 is beggining to scare me BIG TIME!!"