Red Hat Flaws
by T. Colin Dodd
OK, so the headline doesn’t sound so great, but read on…
Secunia: More Red Hat flaws than Microsoft in 2007 - ZDNet UK
Secunia said that while Red Hat had more reported vulnerabilities than Windows, it was not possible to compare its relative security with Microsoft products, or comment on the relative security of open-source versus proprietary products based on vulnerability figures.
“It’s impossible to make a fair comparison — it’s like comparing apples to oranges,” Thomas Kristensen, Secunia’s chief technology officer, told ZDNet.co.uk. “Red Hat has the highest number of applications included, so the number of vulnerabilities that affect it is bound to be higher.”
(snip)
Kristensen said that third-party software was a key factor affecting the number of vulnerabilities attributed to the respective operating systems. With Red Hat, 99 percent, or 629 of the vulnerabilities, were due to third-party components. With Windows, four percent of flaws were due to third-party software.
One of the differences between the operating systems, said Kristensen, was that Red Hat notified customers of third-party flaws that affected its operating systems, as well as supporting them. Microsoft, on the other hand, only notified customers of flaws within its control.
Some experts are bound to ask why we feature news like this on this blog. Why go there?
It’s simple: When people debate Red Hat vulnerabilities vs. those found in our competitors, we win.
The open source model isn’t problem free, it just deals with problems much more openly and efficiently.
And Red Hat is understandably proud of that.
February 4th, 2008 at 8:37 pm
[…] Of note is a response for T. Colin Dodd regaring his short and sweet post regarding Red Hat Flaws according to Secunia. In short, Mr. Dodd (please correct me if the address is wrong), yes, Red Hat should be proud of what they’ve accomplished, but… […]