S
Stephan Rose
On Thu, 23 Aug 2007 16:11:24 +0200, Marco Desloovere wrote:
> Stephan Rose [Wed, 22 Aug 2007 17:44:52 -0500] wrote:
>
>>On Thu, 23 Aug 2007 00:15:43 +0200, Marco Desloovere wrote:
>>
>>> The poster formerly known as 'The poster formerly known as Nina DiBoy'
>>> [Wed, 22 Aug 2007 14:18:57 -0500] wrote:
>>>
>>>>If it's fixed, it's not a problem if you update. If it's not a patched
>>>>vulnerability, you are stuck with the problem weather you like it or
>>>>not. MS has unpatched vulnerabilities in their OSes (Vista and XP). If
>>>>Ubuntu has all of it's known vulnerabilites patched (at least all the
>>>>ones on that page are), I would much prefer to run Ubuntu from a
>>>>security standpoint.
>>>
>>> Could you show me an example of an unpatched security vulnerability in
>>> Windows Vista?
>>>
>>> I had a look on http://www.securityfocus.com/bid and searched for
>>> Windows Vista Home Premium and got this: "No matching vulnerabilities
>>> found".
>>>
>>
>>Just because a 3rd party website is not aware of any does not mean there
>>aren't (or are) any. When I was giving Vista a Trial I received security
>>updates via windows update so there obviously were some...but yet that
>>site shows none...
>
> OK, fair enough, so where are these unpatched Windows Vista security
> vulnerabilities right now?
Every OS has unpatched Vulnerabilities, I don't care if it is Vista,
MacOS, Ubuntu, <insert name here>.
They all do across the board. Period. Anyone who claims otherwise needs
their head examined or shouldn't be near a computer.
A vulnerability needs to be discovered for it to be able to be patched. So
as long as it is not found, it is not patched because it can't be.
What's more important isn't the number of vulnerabilities in one OS vs the
other OS. That's completely irrelevant.
The only important number is the number of *discovered but unpatched*
vulnerabilities and how likely they are actually to occur. Just because a
vulnerability exists does not mean it affects a User if it is in an
component that the user doesn't even have installed or does not use.
--
Stephan
2003 Yamaha R6
å›ã®ã“ã¨æ€ã„出ã™æ—¥ãªã‚“ã¦ãªã„ã®ã¯
å›ã®ã“ã¨å¿˜ã‚ŒãŸã¨ããŒãªã„ã‹ã‚‰
> Stephan Rose [Wed, 22 Aug 2007 17:44:52 -0500] wrote:
>
>>On Thu, 23 Aug 2007 00:15:43 +0200, Marco Desloovere wrote:
>>
>>> The poster formerly known as 'The poster formerly known as Nina DiBoy'
>>> [Wed, 22 Aug 2007 14:18:57 -0500] wrote:
>>>
>>>>If it's fixed, it's not a problem if you update. If it's not a patched
>>>>vulnerability, you are stuck with the problem weather you like it or
>>>>not. MS has unpatched vulnerabilities in their OSes (Vista and XP). If
>>>>Ubuntu has all of it's known vulnerabilites patched (at least all the
>>>>ones on that page are), I would much prefer to run Ubuntu from a
>>>>security standpoint.
>>>
>>> Could you show me an example of an unpatched security vulnerability in
>>> Windows Vista?
>>>
>>> I had a look on http://www.securityfocus.com/bid and searched for
>>> Windows Vista Home Premium and got this: "No matching vulnerabilities
>>> found".
>>>
>>
>>Just because a 3rd party website is not aware of any does not mean there
>>aren't (or are) any. When I was giving Vista a Trial I received security
>>updates via windows update so there obviously were some...but yet that
>>site shows none...
>
> OK, fair enough, so where are these unpatched Windows Vista security
> vulnerabilities right now?
Every OS has unpatched Vulnerabilities, I don't care if it is Vista,
MacOS, Ubuntu, <insert name here>.
They all do across the board. Period. Anyone who claims otherwise needs
their head examined or shouldn't be near a computer.
A vulnerability needs to be discovered for it to be able to be patched. So
as long as it is not found, it is not patched because it can't be.
What's more important isn't the number of vulnerabilities in one OS vs the
other OS. That's completely irrelevant.
The only important number is the number of *discovered but unpatched*
vulnerabilities and how likely they are actually to occur. Just because a
vulnerability exists does not mean it affects a User if it is in an
component that the user doesn't even have installed or does not use.
--
Stephan
2003 Yamaha R6
å›ã®ã“ã¨æ€ã„出ã™æ—¥ãªã‚“ã¦ãªã„ã®ã¯
å›ã®ã“ã¨å¿˜ã‚ŒãŸã¨ããŒãªã„ã‹ã‚‰