Text only | Text with Images

Clan x86

Technical (Development, Security, etc.) => General Security Information => Topic started by: iago on March 12, 2006, 12:17:47 PM

Title: This is what I've been trying to say! (re: browsers)
Post by: iago on March 12, 2006, 12:17:47 PM
There have been many studies done (including a famous one by Symantec (http://it.slashdot.org/it/05/09/20/1359203.shtml?tid=172)) that reports that Firefox is NOT more safe than Internet Explorer. 

Well, Symantec has recanted by saying the exact same thing that I said: the studies only count vulnerabilities that the vendor ADMITS to.  In a new study (http://news.yahoo.com/s/cmp/20060308/tc_cmp/181501722;_ylt=AhJkTGJ9tXH5Y5Q8lrKhf1kjtBAF;_ylu=X3oDMTA5aHJvMDdwBHNlYwN5bmNhdA--), still done by Symantec, they count all vulnerabilities, acknowledged and not, and guess what?  Firefox came out on top.  To quote the Symantec researcher, "In open source, more vulnerabilities will be acknowledged because of the transparency in development."

So yeah, I'm glad they've cleared that up :)
Title: Re: This is what I've been trying to say! (re: browsers)
Post by: Sidoh on March 12, 2006, 12:31:15 PM
I'm not sure if this is where you got it from, but it was on slashdot (http://it.slashdot.org/article.pl?sid=06/03/12/0351248&from=rss) this morning.

I agree, though.  It's good to have that cleared up. :)

IE more secure than Firefox... ahahahah...
Title: Re: This is what I've been trying to say! (re: browsers)
Post by: iago on March 12, 2006, 12:38:07 PM
Quote from: Sidoh on March 12, 2006, 12:31:15 PM
I'm not sure if this is where you got it from, but it was on slashdot (http://it.slashdot.org/article.pl?sid=06/03/12/0351248&from=rss) this morning.
Yep, I got the links from Slashdot, but I typed up the description myself. 
Title: Re: This is what I've been trying to say! (re: browsers)
Post by: Sidoh on March 12, 2006, 12:50:03 PM
Quote from: iago on March 12, 2006, 12:38:07 PM
Yep, I got the links from Slashdot, but I typed up the description myself. 

I could tell!  It sounded far too iago-ish to be from anywhere else. :)
Title: Re: This is what I've been trying to say! (re: browsers)
Post by: Newby on March 12, 2006, 03:07:31 PM
QuoteAmong the other data in Symantec's report are new "time to compromise" figures that try to gauge how long an unpatched, unprotected computer would last before it has snatched by a hacker.

Windows XP Professional, said Symantec, stays safe just one hour and 12 seconds, while the
Windows 2000 Server (with SP4) made it an hour and 17 minutes. An unpatched Windows Server 2003 system lasted somewhat longer.

In contrast, unpatched
Linux installations of both Red Hat Enterprise Linux 3 and SuSE Linux 9 Desktop were never compromised during their month-and-a-half exposure to attackers.

Fucking crushed.
Title: Re: This is what I've been trying to say! (re: browsers)
Post by: Sidoh on March 12, 2006, 03:40:36 PM
I've seen statistics like that before, hehe.  I think they're also assuming that the network is unsecured.

Plus, of the circulating internet vunrabilities (really old worms and such), how many are there for Linux?  I'm sure there are more vunerabilities in Linux that aren't exploited as vastly as Windows because there's little point to doing it.
Text only | Text with Images