Slashdot Mirror

IE9 was more secure in several ways than Firefox. It also had comparable number of security holes.

Oh really? You might want to check what Secunia has to say on the matter.

For IE 9

For Firefox 15

The two aren't even close in terms of vulnerabilities. Too soon for Fx 15? Let's go with the 14 version:

Less than half the problems.

And one more for good measure; Firefox 13. Again, less than half the vulnerabilities of IE 9. Even the unpatched vulnerabilities for Firefox are less critical than the ones for IE 9.

So yes, things have changed substantially in one year. Either IE 9 has gotten worse or Firefox has gotten better. Take your pick.

IE9 was more secure in several ways than Firefox. It also had comparable number of security holes.

Oh really? You might want to check what Secunia has to say on the matter.

For IE 9

For Firefox 15

The two aren't even close in terms of vulnerabilities. Too soon for Fx 15? Let's go with the 14 version:

Less than half the problems.

And one more for good measure; Firefox 13. Again, less than half the vulnerabilities of IE 9. Even the unpatched vulnerabilities for Firefox are less critical than the ones for IE 9.

So yes, things have changed substantially in one year. Either IE 9 has gotten worse or Firefox has gotten better. Take your pick.

IE9 was more secure in several ways than Firefox. It also had comparable number of security holes.

Oh really? You might want to check what Secunia has to say on the matter.

For IE 9

For Firefox 15

The two aren't even close in terms of vulnerabilities. Too soon for Fx 15? Let's go with the 14 version:

Less than half the problems.

And one more for good measure; Firefox 13. Again, less than half the vulnerabilities of IE 9. Even the unpatched vulnerabilities for Firefox are less critical than the ones for IE 9.

So yes, things have changed substantially in one year. Either IE 9 has gotten worse or Firefox has gotten better. Take your pick.

Completely wrong, as it happens, although I'm honestly not sure how you could have gotten that idea. Drive-by exploits, in the sense of "you visit a website and are pwned", have existed for all major browsers.

Firefox: much like this IE9 bug; only requires you to execute some script
Chrome: buffer mismanagement in SPDY or bad casts in SVG
Safari: visit a website and automatically execute a shell script from it
Opera: buffer overflow using file download name in the prompt (can trigger automatically)

To be fair, most of these are pretty old; 2010 or sometimes before. I could have chosen a 2012 for Chrome, but chose to look explicitly at the browser, not at the Flash plugin (even though it's bundled with the browser and enabled by default...) Secunia's database also isn't comprehensive; for example, there were vulns found (by a white-hat, so patched before release and not included here) in Chrome earlier this year. That said, if you filter advisories to "extremely critical", IE has a much longer list than the other browsers (although part of that will just be market penetration making it the thing people have been targeting most). I also ignored browser version; that list for IE includes IE6 for example.

Completely wrong, as it happens, although I'm honestly not sure how you could have gotten that idea. Drive-by exploits, in the sense of "you visit a website and are pwned", have existed for all major browsers.

Firefox: much like this IE9 bug; only requires you to execute some script
Chrome: buffer mismanagement in SPDY or bad casts in SVG
Safari: visit a website and automatically execute a shell script from it
Opera: buffer overflow using file download name in the prompt (can trigger automatically)

To be fair, most of these are pretty old; 2010 or sometimes before. I could have chosen a 2012 for Chrome, but chose to look explicitly at the browser, not at the Flash plugin (even though it's bundled with the browser and enabled by default...) Secunia's database also isn't comprehensive; for example, there were vulns found (by a white-hat, so patched before release and not included here) in Chrome earlier this year. That said, if you filter advisories to "extremely critical", IE has a much longer list than the other browsers (although part of that will just be market penetration making it the thing people have been targeting most). I also ignored browser version; that list for IE includes IE6 for example.

Completely wrong, as it happens, although I'm honestly not sure how you could have gotten that idea. Drive-by exploits, in the sense of "you visit a website and are pwned", have existed for all major browsers.

Firefox: much like this IE9 bug; only requires you to execute some script
Chrome: buffer mismanagement in SPDY or bad casts in SVG
Safari: visit a website and automatically execute a shell script from it
Opera: buffer overflow using file download name in the prompt (can trigger automatically)

To be fair, most of these are pretty old; 2010 or sometimes before. I could have chosen a 2012 for Chrome, but chose to look explicitly at the browser, not at the Flash plugin (even though it's bundled with the browser and enabled by default...) Secunia's database also isn't comprehensive; for example, there were vulns found (by a white-hat, so patched before release and not included here) in Chrome earlier this year. That said, if you filter advisories to "extremely critical", IE has a much longer list than the other browsers (although part of that will just be market penetration making it the thing people have been targeting most). I also ignored browser version; that list for IE includes IE6 for example.

Completely wrong, as it happens, although I'm honestly not sure how you could have gotten that idea. Drive-by exploits, in the sense of "you visit a website and are pwned", have existed for all major browsers.

Firefox: much like this IE9 bug; only requires you to execute some script
Chrome: buffer mismanagement in SPDY or bad casts in SVG
Safari: visit a website and automatically execute a shell script from it
Opera: buffer overflow using file download name in the prompt (can trigger automatically)

To be fair, most of these are pretty old; 2010 or sometimes before. I could have chosen a 2012 for Chrome, but chose to look explicitly at the browser, not at the Flash plugin (even though it's bundled with the browser and enabled by default...) Secunia's database also isn't comprehensive; for example, there were vulns found (by a white-hat, so patched before release and not included here) in Chrome earlier this year. That said, if you filter advisories to "extremely critical", IE has a much longer list than the other browsers (although part of that will just be market penetration making it the thing people have been targeting most). I also ignored browser version; that list for IE includes IE6 for example.

Yes, really. Going back over 10 years of the JRE.

JRE 1.7: 53 vulnerabilities
JRE 1.6: 274 vulnerabilites.
JRE 1.5: 265 vulnerabilities.
JRE 1.4: 264 vulnerabilities.

That's 191 vulnerabilites on average and it's only that low since the 1.7 JRE is only 2 years old. And why did you bring up J2EE? What average user is running J2EE on their desktop?

Yes, really. Going back over 10 years of the JRE.

JRE 1.7: 53 vulnerabilities
JRE 1.6: 274 vulnerabilites.
JRE 1.5: 265 vulnerabilities.
JRE 1.4: 264 vulnerabilities.

That's 191 vulnerabilites on average and it's only that low since the 1.7 JRE is only 2 years old. And why did you bring up J2EE? What average user is running J2EE on their desktop?

Yes, really. Going back over 10 years of the JRE.

JRE 1.7: 53 vulnerabilities
JRE 1.6: 274 vulnerabilites.
JRE 1.5: 265 vulnerabilities.
JRE 1.4: 264 vulnerabilities.

That's 191 vulnerabilites on average and it's only that low since the 1.7 JRE is only 2 years old. And why did you bring up J2EE? What average user is running J2EE on their desktop?

Yes, really. Going back over 10 years of the JRE.

JRE 1.7: 53 vulnerabilities
JRE 1.6: 274 vulnerabilites.
JRE 1.5: 265 vulnerabilities.
JRE 1.4: 264 vulnerabilities.

That's 191 vulnerabilites on average and it's only that low since the 1.7 JRE is only 2 years old. And why did you bring up J2EE? What average user is running J2EE on their desktop?

Really? J2EE in the last 12 months although that's not too telling, so we'll look at JRE 1.6, all systems, over a couple of years. Feel free to post other data. If you're talking about WebStart or Browser plugins, I'll note first that those are not part of Java, and second, that they are highly affected by their browser's integration and potential lack of security features there.

Really? J2EE in the last 12 months although that's not too telling, so we'll look at JRE 1.6, all systems, over a couple of years. Feel free to post other data. If you're talking about WebStart or Browser plugins, I'll note first that those are not part of Java, and second, that they are highly affected by their browser's integration and potential lack of security features there.

What is amazing is you read some of the other posters, who were so quick to mod me down and go "poo poo, Linux is virus free, poo poo" it ALL comes down to "Magical Thinking", the same crap that those selling security junk have used for years. Its the same old "With product X you are always safe and immune!" which anybody with two functioning brain cells ought to be able to see through, but apparently not here. Nice to see at least one person gets it.

Look magical thinkers, it is VERY simple, okay? EVERY SINGLE OS is an extremely complex pile of code. it has to support at least tens of thousands of pieces of hardware, multitasking, resource management, hell the kernel is how many million lines now? And that is before you even account for all the third party code running on top. I bet you could ask Linus Torvalds himself what happens when program Foo gets called and even HE won't know every single interaction, its just too complex.

So magical thinking simply doesn't work. What kernel is Android running while its getting malware up the butt? That would be Linux. What about Are there unpatched security holes in Linux? Why yes there are which kinda blows a giant hole in the magical thinking. BTW if you'd like a little more food for thought, what OS was 3 of the 4 CAs running that were compromised? take a look and see. Maybe they just had bad configs? Surely someone with knowledge would be safe right? Guess again and its not a fluke by any means.

In the end it doesn't matter if you are running Linux, windows, OSX, BSD, or OS/2, if you are targeted by malware writers, which is EXACTLY what happened to the corp in TFA, then they can simply target the payload to the OS and you are just as screwed, no magical thinking will save you.

What is amazing is you read some of the other posters, who were so quick to mod me down and go "poo poo, Linux is virus free, poo poo" it ALL comes down to "Magical Thinking", the same crap that those selling security junk have used for years. Its the same old "With product X you are always safe and immune!" which anybody with two functioning brain cells ought to be able to see through, but apparently not here. Nice to see at least one person gets it.

Look magical thinkers, it is VERY simple, okay? EVERY SINGLE OS is an extremely complex pile of code. it has to support at least tens of thousands of pieces of hardware, multitasking, resource management, hell the kernel is how many million lines now? And that is before you even account for all the third party code running on top. I bet you could ask Linus Torvalds himself what happens when program Foo gets called and even HE won't know every single interaction, its just too complex.

So magical thinking simply doesn't work. What kernel is Android running while its getting malware up the butt? That would be Linux. What about Are there unpatched security holes in Linux? Why yes there are which kinda blows a giant hole in the magical thinking. BTW if you'd like a little more food for thought, what OS was 3 of the 4 CAs running that were compromised? take a look and see. Maybe they just had bad configs? Surely someone with knowledge would be safe right? Guess again and its not a fluke by any means.

In the end it doesn't matter if you are running Linux, windows, OSX, BSD, or OS/2, if you are targeted by malware writers, which is EXACTLY what happened to the corp in TFA, then they can simply target the payload to the OS and you are just as screwed, no magical thinking will save you.

What is amazing is you read some of the other posters, who were so quick to mod me down and go "poo poo, Linux is virus free, poo poo" it ALL comes down to "Magical Thinking", the same crap that those selling security junk have used for years. Its the same old "With product X you are always safe and immune!" which anybody with two functioning brain cells ought to be able to see through, but apparently not here. Nice to see at least one person gets it.

Look magical thinkers, it is VERY simple, okay? EVERY SINGLE OS is an extremely complex pile of code. it has to support at least tens of thousands of pieces of hardware, multitasking, resource management, hell the kernel is how many million lines now? And that is before you even account for all the third party code running on top. I bet you could ask Linus Torvalds himself what happens when program Foo gets called and even HE won't know every single interaction, its just too complex.

So magical thinking simply doesn't work. What kernel is Android running while its getting malware up the butt? That would be Linux. What about Are there unpatched security holes in Linux? Why yes there are which kinda blows a giant hole in the magical thinking. BTW if you'd like a little more food for thought, what OS was 3 of the 4 CAs running that were compromised? take a look and see. Maybe they just had bad configs? Surely someone with knowledge would be safe right? Guess again and its not a fluke by any means.

In the end it doesn't matter if you are running Linux, windows, OSX, BSD, or OS/2, if you are targeted by malware writers, which is EXACTLY what happened to the corp in TFA, then they can simply target the payload to the OS and you are just as screwed, no magical thinking will save you.

Join the free bit of the site (community), signup for the vulnerability list in the profile page.

Example:
http://secunia.com/advisories/49457/

They send 10-20 emails a day approx, easy enough to filter them to delete the irrelevant ones etc.

It is, & has been, TRULY the "Superior-Warrior" in the way of webbrowser programs + on MANY levels!

FOR SPEED OPERA ROCKS! (Especially over time):

B.) For SPEED & Opera leads again there, & CONSISTENTLY + for the LONGEST TIME, yes, even in javascript for the LONGEST time, until FF's new engines took its place, albeit, only TEMPORARILY!

(Until Opera 10.50 @ least, because that's gotten a decent "boost" in that area -> http://tech.slashdot.org/article.pl?sid=09/12/22/1911216 (not that it matters though, speeding up javascript is like asking to get infected by malscripted sites &/or adbanners faster imo @ least - that of a "POV" of PC security, mostly)):

2.) SunSpider tests done here -> http://www.pcpro.co.uk/gallery/features/356350/on-test-the-hidden-seven-browsers-in-the-windows-ballot/145087 WHERE OPERA REGAINS ITS JAVASCRIPT PROCESSING SPEED LEAD OVER FF YET AGAIN!

OLDER DATA (on performance alone):

3.) And this one too last year also -> http://crave.cnet.co.uk/software/0,39029471,49302491,00.htm

4.) AND IT HAS BEEN "BLOWING AWAY" FIREFOX IN HTML PARSING/PROCESSING SPEEDS AS WELL, & FOR YEARS NOW, per this test years ago -> http://www.howtocreate.co.uk/browserSpeed.html#win

5.) Same here -> http://nontroppo.org/timer/kestrel_tests/

6.) Yet again/once more? Same story -> http://tech.slashdot.org/story/09/08/08/1750241/Opera-Dominates-CNET-Survey-of-Underdog-Web-Browsers

(Opera "rocked the planet" in those cases... bigtime (& ESPECIALLY ON THE MOST USED PLATFORM THERE IS, BAR-NONE, FOR PC-COMPUTING: Windows!))

====

ALSO, FOR SECURITY? YES - OPERA ROCKS (as far as unpatched security vulnerabilities):

---

Vulnerability Report: Opera 11.x (05/26/2012):

http://secunia.com/advisories/product/33328/

Unpatched 10% (1 of 10 Secunia advisories)

* Mind you, that over time? From all versions UP TO this current one just released today?? THIS IS USUALLY ZERO% & ZERO UNPATCHED! The single 1 remaining is the "history bug" ALL other browsers had also, & the simple fix? DON'T KEEP BROWSING HISTORIES!

(What ticked me off, is that Opera 12's out there, but Secunia doesn't have stats for it yet...)

---

Vulnerability Report: Microsoft Internet Explorer 9.x (05/26/2012):

http://secunia.com/advisories/product/34591/

Unpatched 13% (1 of 8 Secunia advisories)

---

Vulnerability Report: Mozilla Firefox 12.x (05/26/2012):

http://secunia.com/advisories/product/40737/

Unpatched 0% (0 of 0 Secunia advisories)

---

Vulnerability Report: Google Chrome 19.x (05/26/2012):

http://secunia.com/advisories/product/40938/

Unpatched 0% (0 of 1 Secunia advisories)

---

A.) For SECURITY, OPERA ROCKS & HAS OVER TIME BIG TIME, usually @ ZERO unpatched security vulnerabilities AND zero unpatched sec. vulns counts period!

(& Opera leads there for the LONGEST TIME, yes, even in least security vulnerabilities found over time, typically of the "big 3" webbrowsers):

1.) iPhone, IE, Firefox, Safari get stomped at hacker contest -> (No Opera noted as "hosed" though, lol)

It is, & has been, TRULY the "Superior-Warrior" in the way of webbrowser programs + on MANY levels!

FOR SPEED OPERA ROCKS! (Especially over time):

B.) For SPEED & Opera leads again there, & CONSISTENTLY + for the LONGEST TIME, yes, even in javascript for the LONGEST time, until FF's new engines took its place, albeit, only TEMPORARILY!

(Until Opera 10.50 @ least, because that's gotten a decent "boost" in that area -> http://tech.slashdot.org/article.pl?sid=09/12/22/1911216 (not that it matters though, speeding up javascript is like asking to get infected by malscripted sites &/or adbanners faster imo @ least - that of a "POV" of PC security, mostly)):

2.) SunSpider tests done here -> http://www.pcpro.co.uk/gallery/features/356350/on-test-the-hidden-seven-browsers-in-the-windows-ballot/145087 WHERE OPERA REGAINS ITS JAVASCRIPT PROCESSING SPEED LEAD OVER FF YET AGAIN!

OLDER DATA (on performance alone):

3.) And this one too last year also -> http://crave.cnet.co.uk/software/0,39029471,49302491,00.htm

4.) AND IT HAS BEEN "BLOWING AWAY" FIREFOX IN HTML PARSING/PROCESSING SPEEDS AS WELL, & FOR YEARS NOW, per this test years ago -> http://www.howtocreate.co.uk/browserSpeed.html#win

5.) Same here -> http://nontroppo.org/timer/kestrel_tests/

6.) Yet again/once more? Same story -> http://tech.slashdot.org/story/09/08/08/1750241/Opera-Dominates-CNET-Survey-of-Underdog-Web-Browsers

(Opera "rocked the planet" in those cases... bigtime (& ESPECIALLY ON THE MOST USED PLATFORM THERE IS, BAR-NONE, FOR PC-COMPUTING: Windows!))

====

ALSO, FOR SECURITY? YES - OPERA ROCKS (as far as unpatched security vulnerabilities):

---

Vulnerability Report: Opera 11.x (05/26/2012):

http://secunia.com/advisories/product/33328/

Unpatched 10% (1 of 10 Secunia advisories)

* Mind you, that over time? From all versions UP TO this current one just released today?? THIS IS USUALLY ZERO% & ZERO UNPATCHED! The single 1 remaining is the "history bug" ALL other browsers had also, & the simple fix? DON'T KEEP BROWSING HISTORIES!

(What ticked me off, is that Opera 12's out there, but Secunia doesn't have stats for it yet...)

---

Vulnerability Report: Microsoft Internet Explorer 9.x (05/26/2012):

http://secunia.com/advisories/product/34591/

Unpatched 13% (1 of 8 Secunia advisories)

---

Vulnerability Report: Mozilla Firefox 12.x (05/26/2012):

http://secunia.com/advisories/product/40737/

Unpatched 0% (0 of 0 Secunia advisories)

---

Vulnerability Report: Google Chrome 19.x (05/26/2012):

http://secunia.com/advisories/product/40938/

Unpatched 0% (0 of 1 Secunia advisories)

---

A.) For SECURITY, OPERA ROCKS & HAS OVER TIME BIG TIME, usually @ ZERO unpatched security vulnerabilities AND zero unpatched sec. vulns counts period!

(& Opera leads there for the LONGEST TIME, yes, even in least security vulnerabilities found over time, typically of the "big 3" webbrowsers):

1.) iPhone, IE, Firefox, Safari get stomped at hacker contest -> (No Opera noted as "hosed" though, lol)

It is, & has been, TRULY the "Superior-Warrior" in the way of webbrowser programs + on MANY levels!

FOR SPEED OPERA ROCKS! (Especially over time):

B.) For SPEED & Opera leads again there, & CONSISTENTLY + for the LONGEST TIME, yes, even in javascript for the LONGEST time, until FF's new engines took its place, albeit, only TEMPORARILY!

(Until Opera 10.50 @ least, because that's gotten a decent "boost" in that area -> http://tech.slashdot.org/article.pl?sid=09/12/22/1911216 (not that it matters though, speeding up javascript is like asking to get infected by malscripted sites &/or adbanners faster imo @ least - that of a "POV" of PC security, mostly)):

2.) SunSpider tests done here -> http://www.pcpro.co.uk/gallery/features/356350/on-test-the-hidden-seven-browsers-in-the-windows-ballot/145087 WHERE OPERA REGAINS ITS JAVASCRIPT PROCESSING SPEED LEAD OVER FF YET AGAIN!

OLDER DATA (on performance alone):

3.) And this one too last year also -> http://crave.cnet.co.uk/software/0,39029471,49302491,00.htm

4.) AND IT HAS BEEN "BLOWING AWAY" FIREFOX IN HTML PARSING/PROCESSING SPEEDS AS WELL, & FOR YEARS NOW, per this test years ago -> http://www.howtocreate.co.uk/browserSpeed.html#win

5.) Same here -> http://nontroppo.org/timer/kestrel_tests/

6.) Yet again/once more? Same story -> http://tech.slashdot.org/story/09/08/08/1750241/Opera-Dominates-CNET-Survey-of-Underdog-Web-Browsers

(Opera "rocked the planet" in those cases... bigtime (& ESPECIALLY ON THE MOST USED PLATFORM THERE IS, BAR-NONE, FOR PC-COMPUTING: Windows!))

====

ALSO, FOR SECURITY? YES - OPERA ROCKS (as far as unpatched security vulnerabilities):

---

Vulnerability Report: Opera 11.x (05/26/2012):

http://secunia.com/advisories/product/33328/

Unpatched 10% (1 of 10 Secunia advisories)

* Mind you, that over time? From all versions UP TO this current one just released today?? THIS IS USUALLY ZERO% & ZERO UNPATCHED! The single 1 remaining is the "history bug" ALL other browsers had also, & the simple fix? DON'T KEEP BROWSING HISTORIES!

(What ticked me off, is that Opera 12's out there, but Secunia doesn't have stats for it yet...)

---

Vulnerability Report: Microsoft Internet Explorer 9.x (05/26/2012):

http://secunia.com/advisories/product/34591/

Unpatched 13% (1 of 8 Secunia advisories)

---

Vulnerability Report: Mozilla Firefox 12.x (05/26/2012):

http://secunia.com/advisories/product/40737/

Unpatched 0% (0 of 0 Secunia advisories)

---

Vulnerability Report: Google Chrome 19.x (05/26/2012):

http://secunia.com/advisories/product/40938/

Unpatched 0% (0 of 1 Secunia advisories)

---

A.) For SECURITY, OPERA ROCKS & HAS OVER TIME BIG TIME, usually @ ZERO unpatched security vulnerabilities AND zero unpatched sec. vulns counts period!

(& Opera leads there for the LONGEST TIME, yes, even in least security vulnerabilities found over time, typically of the "big 3" webbrowsers):

1.) iPhone, IE, Firefox, Safari get stomped at hacker contest -> (No Opera noted as "hosed" though, lol)

It is, & has been, TRULY the "Superior-Warrior" in the way of webbrowser programs + on MANY levels!

FOR SPEED OPERA ROCKS! (Especially over time):

B.) For SPEED & Opera leads again there, & CONSISTENTLY + for the LONGEST TIME, yes, even in javascript for the LONGEST time, until FF's new engines took its place, albeit, only TEMPORARILY!

(Until Opera 10.50 @ least, because that's gotten a decent "boost" in that area -> http://tech.slashdot.org/article.pl?sid=09/12/22/1911216 (not that it matters though, speeding up javascript is like asking to get infected by malscripted sites &/or adbanners faster imo @ least - that of a "POV" of PC security, mostly)):

2.) SunSpider tests done here -> http://www.pcpro.co.uk/gallery/features/356350/on-test-the-hidden-seven-browsers-in-the-windows-ballot/145087 WHERE OPERA REGAINS ITS JAVASCRIPT PROCESSING SPEED LEAD OVER FF YET AGAIN!

OLDER DATA (on performance alone):

3.) And this one too last year also -> http://crave.cnet.co.uk/software/0,39029471,49302491,00.htm

4.) AND IT HAS BEEN "BLOWING AWAY" FIREFOX IN HTML PARSING/PROCESSING SPEEDS AS WELL, & FOR YEARS NOW, per this test years ago -> http://www.howtocreate.co.uk/browserSpeed.html#win

5.) Same here -> http://nontroppo.org/timer/kestrel_tests/

6.) Yet again/once more? Same story -> http://tech.slashdot.org/story/09/08/08/1750241/Opera-Dominates-CNET-Survey-of-Underdog-Web-Browsers

(Opera "rocked the planet" in those cases... bigtime (& ESPECIALLY ON THE MOST USED PLATFORM THERE IS, BAR-NONE, FOR PC-COMPUTING: Windows!))

====

ALSO, FOR SECURITY? YES - OPERA ROCKS (as far as unpatched security vulnerabilities):

---

Vulnerability Report: Opera 11.x (05/26/2012):

http://secunia.com/advisories/product/33328/

Unpatched 10% (1 of 10 Secunia advisories)

* Mind you, that over time? From all versions UP TO this current one just released today?? THIS IS USUALLY ZERO% & ZERO UNPATCHED! The single 1 remaining is the "history bug" ALL other browsers had also, & the simple fix? DON'T KEEP BROWSING HISTORIES!

(What ticked me off, is that Opera 12's out there, but Secunia doesn't have stats for it yet...)

---

Vulnerability Report: Microsoft Internet Explorer 9.x (05/26/2012):

http://secunia.com/advisories/product/34591/

Unpatched 13% (1 of 8 Secunia advisories)

---

Vulnerability Report: Mozilla Firefox 12.x (05/26/2012):

http://secunia.com/advisories/product/40737/

Unpatched 0% (0 of 0 Secunia advisories)

---

Vulnerability Report: Google Chrome 19.x (05/26/2012):

http://secunia.com/advisories/product/40938/

Unpatched 0% (0 of 1 Secunia advisories)

---

A.) For SECURITY, OPERA ROCKS & HAS OVER TIME BIG TIME, usually @ ZERO unpatched security vulnerabilities AND zero unpatched sec. vulns counts period!

(& Opera leads there for the LONGEST TIME, yes, even in least security vulnerabilities found over time, typically of the "big 3" webbrowsers):

1.) iPhone, IE, Firefox, Safari get stomped at hacker contest -> (No Opera noted as "hosed" though, lol)

I agree.

There are 3rd party applications that can detect, and sometimes auto-update unpatched programs (example: Secunia PSI)

Now, it's been a while since I looked into this so don't bite my head off if my information is not current, but last I checked Java had problems with DEP and ASLR and did not opt into them (on Windows). Even if a flaw is not 0-day, it's much easier to attack without DEP and ASLR, so in my opinion that's another reason to heap a high level of scorn upon it. Found this from June 2010: http://secunia.com/gfx/pdf/DEP_ASLR_2010_paper.pdf - not sure if anything has changed with java but I know some of the other apps have switched on DEP and ASLR.

Because we can't trust programmers to be smart enough to avoid these conditions...?

Well, obviously we can't.

Oh look, its a FOSSie, aka basement troll. How's the koolaid, is it cherry? You want some links on breakage? be careful what you wish for, because you just might get it and that is showing that one of the largest OEMs on the planet can't keep your craptastic OS running without having to do their own fricking fork!

This is why a decade old Windows beat the shit out of Linux on netbooks or how ASUS has given up on your bullshit or how about Walmart running away from linux as fast as it can? want some more? Nice thing about having the truth on your side instead of religious dogma, i can do this alllll day long! How about you actually have the balls to celebrate getting a whole 1% market share while you are actually lower than JavaME and there is a whole website dedicated To your bullshit and excuses

And how about that "great" Linux security that is supposed to be why we should put up with all this horseshit? Get ready, here they come! Kinda makes that koolaid just a little bitter now, don't it? Now why would anybody care when they could get a Mac or Win 7 and not deal with all this lies and horseshit?

BTW if you'd like a little more food for thought, what OS was 3 of the 4 CAs running that were compromised? take a look and see. Maybe they just had bad configs? Surely someone with knowledge would be safe right? Guess again and its not a fluke by any means.

Oh look, its a FOSSie, aka basement troll. How's the koolaid, is it cherry? You want some links on breakage? be careful what you wish for, because you just might get it and that is showing that one of the largest OEMs on the planet can't keep your craptastic OS running without having to do their own fricking fork!

This is why a decade old Windows beat the shit out of Linux on netbooks or how ASUS has given up on your bullshit or how about Walmart running away from linux as fast as it can? want some more? Nice thing about having the truth on your side instead of religious dogma, i can do this alllll day long! How about you actually have the balls to celebrate getting a whole 1% market share while you are actually lower than JavaME and there is a whole website dedicated To your bullshit and excuses

And how about that "great" Linux security that is supposed to be why we should put up with all this horseshit? Get ready, here they come! Kinda makes that koolaid just a little bitter now, don't it? Now why would anybody care when they could get a Mac or Win 7 and not deal with all this lies and horseshit?

BTW if you'd like a little more food for thought, what OS was 3 of the 4 CAs running that were compromised? take a look and see. Maybe they just had bad configs? Surely someone with knowledge would be safe right? Guess again and its not a fluke by any means.

Oh look, its a FOSSie, aka basement troll. How's the koolaid, is it cherry? You want some links on breakage? be careful what you wish for, because you just might get it and that is showing that one of the largest OEMs on the planet can't keep your craptastic OS running without having to do their own fricking fork!

This is why a decade old Windows beat the shit out of Linux on netbooks or how ASUS has given up on your bullshit or how about Walmart running away from linux as fast as it can? want some more? Nice thing about having the truth on your side instead of religious dogma, i can do this alllll day long! How about you actually have the balls to celebrate getting a whole 1% market share while you are actually lower than JavaME and there is a whole website dedicated To your bullshit and excuses

And how about that "great" Linux security that is supposed to be why we should put up with all this horseshit? Get ready, here they come! Kinda makes that koolaid just a little bitter now, don't it? Now why would anybody care when they could get a Mac or Win 7 and not deal with all this lies and horseshit?

BTW if you'd like a little more food for thought, what OS was 3 of the 4 CAs running that were compromised? take a look and see. Maybe they just had bad configs? Surely someone with knowledge would be safe right? Guess again and its not a fluke by any means.

In my world (I'm a principal security architect for Microsoft)

So hardly an unbiased view...

Yes, Macs do have far more software vulnerabilities than Windows computers. If you don't believe me, go to any vulnerability database (I like Secunia's advisory database) and compare any operating system or application from Apple and Microsoft, head to head, over the same time period during the last five years.

Can't really do that, Secunia has a "Mac OSX" category, while Windows is separated according to version.
On the other hand, if you compare OSX (all versions) for 2011 to Windows 7 for 2011 you get:

http://secunia.com/advisories/product/96/?task=statistics_2011
http://secunia.com/advisories/product/27467/?task=statistics_2011

39 advisories for windows 7, vs 8 for OSX..
0% extremely critical for OSX, 3% for windows
Although OSX declares that 13% are unpatched, the unpatched one is a DoS in the mail application.

2010 paints the same picture, 47 vs 12, criticals for windows none for osx, one low severity dos vulnerability unpatched in osx.

I think this qualifies as head to head over the same time period during the last five years... Tho i'm not convinced that counting advisories is a valid comparison.

Among the leading OS vendors, Apple has been the last to implement nearly every important security protection. Apple was last to implement anti-buffer-overflow memory protections. Apple was the last to implement address space layout randomization (ASLR). Apple was the last leading operating system vendor to offer full disk encryption (in the recently released Mac OS X Lion).

Microsoft were also very late to the party on this, most of these protections originated in Linux or OpenBSD...

Apple is also typically the last among these vendors to patch software bugs, sometimes months after they become publicly known.

This is an inherent problem with closed source code, and microsoft are often just as bad as apple... Plenty of ms vulnerabilities go unpatched for months after people have been actively exploiting them in the wild.

And it came as no surprise when Dmitry Sumin, president of Password Inc., told me last week that Apple's Mac OS X Lion was the only popular operating system to store login passwords in plain text in memory.

Not good, but then windows stores passwords in memory in a hashed form, while simultaneously allowing authentication using the hash instead of the plaintext (google for pass the hash if you don`t believe me)... Therefore, the hash is the equivalent of plaintext, and is arguably even worse because it creates a false impression of security.

In my world (I'm a principal security architect for Microsoft)

So hardly an unbiased view...

Yes, Macs do have far more software vulnerabilities than Windows computers. If you don't believe me, go to any vulnerability database (I like Secunia's advisory database) and compare any operating system or application from Apple and Microsoft, head to head, over the same time period during the last five years.

Can't really do that, Secunia has a "Mac OSX" category, while Windows is separated according to version.
On the other hand, if you compare OSX (all versions) for 2011 to Windows 7 for 2011 you get:

http://secunia.com/advisories/product/96/?task=statistics_2011
http://secunia.com/advisories/product/27467/?task=statistics_2011

39 advisories for windows 7, vs 8 for OSX..
0% extremely critical for OSX, 3% for windows
Although OSX declares that 13% are unpatched, the unpatched one is a DoS in the mail application.

2010 paints the same picture, 47 vs 12, criticals for windows none for osx, one low severity dos vulnerability unpatched in osx.

I think this qualifies as head to head over the same time period during the last five years... Tho i'm not convinced that counting advisories is a valid comparison.

Among the leading OS vendors, Apple has been the last to implement nearly every important security protection. Apple was last to implement anti-buffer-overflow memory protections. Apple was the last to implement address space layout randomization (ASLR). Apple was the last leading operating system vendor to offer full disk encryption (in the recently released Mac OS X Lion).

Microsoft were also very late to the party on this, most of these protections originated in Linux or OpenBSD...

Apple is also typically the last among these vendors to patch software bugs, sometimes months after they become publicly known.

This is an inherent problem with closed source code, and microsoft are often just as bad as apple... Plenty of ms vulnerabilities go unpatched for months after people have been actively exploiting them in the wild.

And it came as no surprise when Dmitry Sumin, president of Password Inc., told me last week that Apple's Mac OS X Lion was the only popular operating system to store login passwords in plain text in memory.

Not good, but then windows stores passwords in memory in a hashed form, while simultaneously allowing authentication using the hash instead of the plaintext (google for pass the hash if you don`t believe me)... Therefore, the hash is the equivalent of plaintext, and is arguably even worse because it creates a false impression of security.

Insightful? For what? bragging your on an OS lower than the margin for error and therefor not worth a criminal's time. hey you should brag you are on OS/2, I bet it ain't needed a single patch in years! Meanwhile you can enjoy such fun recreational activities as 1.-hunting for fixes on forums every 6 months when the latest update deathmarch craps on 1 or more of your drivers, 2.- Having such wonderful documentation that is at best just a pile of CLI use flags, at worse a 'todo" file, 3.-having an "OS" that is just a hodge podge of programs written by a bunch of groups that have nothing to do with each other, so some follow Windows conventions, some mac, and some unix, 4.- having such wonderful QA that Dell has to run their own repos just to keep the OS from going "LOL I made a stinky!" on itself and killing the wireless, need i go on?

As for your much vaunted security? might want to look at some things, ready?

Get ready, here they come! BTW if you'd like a little more food for thought, what OS was 3 of the 4 CAs running that were compromised? take a look and see. Maybe they just had bad configs? Surely someone with knowledge would be safe right? Guess again and its not a fluke by any means.

Insightful? For what? bragging your on an OS lower than the margin for error and therefor not worth a criminal's time. hey you should brag you are on OS/2, I bet it ain't needed a single patch in years! Meanwhile you can enjoy such fun recreational activities as 1.-hunting for fixes on forums every 6 months when the latest update deathmarch craps on 1 or more of your drivers, 2.- Having such wonderful documentation that is at best just a pile of CLI use flags, at worse a 'todo" file, 3.-having an "OS" that is just a hodge podge of programs written by a bunch of groups that have nothing to do with each other, so some follow Windows conventions, some mac, and some unix, 4.- having such wonderful QA that Dell has to run their own repos just to keep the OS from going "LOL I made a stinky!" on itself and killing the wireless, need i go on?

As for your much vaunted security? might want to look at some things, ready?

Get ready, here they come! BTW if you'd like a little more food for thought, what OS was 3 of the 4 CAs running that were compromised? take a look and see. Maybe they just had bad configs? Surely someone with knowledge would be safe right? Guess again and its not a fluke by any means.

Insightful? For what? bragging your on an OS lower than the margin for error and therefor not worth a criminal's time. hey you should brag you are on OS/2, I bet it ain't needed a single patch in years! Meanwhile you can enjoy such fun recreational activities as 1.-hunting for fixes on forums every 6 months when the latest update deathmarch craps on 1 or more of your drivers, 2.- Having such wonderful documentation that is at best just a pile of CLI use flags, at worse a 'todo" file, 3.-having an "OS" that is just a hodge podge of programs written by a bunch of groups that have nothing to do with each other, so some follow Windows conventions, some mac, and some unix, 4.- having such wonderful QA that Dell has to run their own repos just to keep the OS from going "LOL I made a stinky!" on itself and killing the wireless, need i go on?

As for your much vaunted security? might want to look at some things, ready?

Get ready, here they come! BTW if you'd like a little more food for thought, what OS was 3 of the 4 CAs running that were compromised? take a look and see. Maybe they just had bad configs? Surely someone with knowledge would be safe right? Guess again and its not a fluke by any means.

...blah...secunia...blah...secunia...blah

Hey, stupid, do you actually read the actual reports that those vulnerability advisories come out of? The very first lines in every single one of them is:

PLEASE NOTE: The statistics provided should NOT be used to compare the overall security of products against one another. It is IMPORTANT to understand what the below comments mean when using the statistics, especially when using the statistics to compare the vulnerability aspects of different products.

Now go back to fucking them little old ladies out of their social security checks in your shitty little store because you are obviously not equipped to have a conversation about security when the you HAVEN'T EVEN READ THE ARTICLES YOU LINK TO. Fucking fraud. You and your alter ego APK keep posting the same bullshit because you think it supports your BS and it doesn't. You haven't even read what you are linking to is what's so funny. Did you think you would just get away with that? How many times do I have to fucking Pwn you on this message board before you've had enough? Do you just like showing how much an ignorant moron you are? BTW, that's why you keep getting modded down. I guess the secret's out.

Thank you for living proof that FOSSies are batshit. you still think that I'm a guy that I can't even get along with and to this very day we don't agree on anything OTHER than the fact you're batshit? delusional much? but if its a pimp slapping of your craptastic OS you want, enjoy! See that's the nice thing about reality, while all you have is insults I have facts! Where are YOUR facts? oh right, they don't exist :-(

Get ready, here they come! Kinda makes that koolaid just a little bitter now, don't it? I believe in using the best tool for the job, but to say Linux is secure or better than any other complex OS is frankly bullshit. Hell I was talking to a 15 year Linux admin on one of the other sites that had gotten so sick of Linux fuckups they were going to BSD and if THAT didn't "just work" they were gonna wash their hands of FLOSS on the desktop and just go Mac.

BTW if you'd like a little more food for thought, what OS was 3 of the 4 CAs running that were compromised? take a look and see. Maybe they just had configs? Surely someone with knowledge would be safe right? Guess again and its not a fluke by any means.

Would you like some more reality? well here it comes! Isn't it sad, how like a frightened child afraid to look under the bed, you cower at the truth? if your driver model isn't shit then why does Dell have to run their own repos even though we are talking a teeny tiny subset of hardware? Oh right because Linux shits itself and dies if you use the default repos! Man that is some excellent product you got there! you think I can get better QA than the third largest OEM on the planet? What, you expect me to tell paying customers "Go to the forum, kiss some loser ass, and maybe, just maybe, in a few days someone will have mercy and give you a big pile of bullshit that may or may not make your sound work again"?

Bleeding yet douchey? want some more? nice thing about having the truth on your side, you can keep throwing punches all day! How about how a decade old Windows beat the shit out of Linux on netbooks or how ASUS has given up on your bullshit or how about Walmart running away from linux as fast as it can? You got the crazy koolaid drunk enough to say they ALL are paid shills because they won't do your forum dance or CLI horseshit? Meanwhile your "hero" Torvalds the great says Plans? We don't need no steenkin plans!. Why don't you tell them that at work next week, see how quick you get a pink slip? More? How about you actually have the balls to celebrate getting a whole 1% market share while you are actually lower than JavaME and there is a whole website dedicated To your bullshit and excuses .

You see you whiny little delusional mama's boy, I'm your worst fucking nightmare...a retaile

Thank you for living proof that FOSSies are batshit. you still think that I'm a guy that I can't even get along with and to this very day we don't agree on anything OTHER than the fact you're batshit? delusional much? but if its a pimp slapping of your craptastic OS you want, enjoy! See that's the nice thing about reality, while all you have is insults I have facts! Where are YOUR facts? oh right, they don't exist :-(

Get ready, here they come! Kinda makes that koolaid just a little bitter now, don't it? I believe in using the best tool for the job, but to say Linux is secure or better than any other complex OS is frankly bullshit. Hell I was talking to a 15 year Linux admin on one of the other sites that had gotten so sick of Linux fuckups they were going to BSD and if THAT didn't "just work" they were gonna wash their hands of FLOSS on the desktop and just go Mac.

BTW if you'd like a little more food for thought, what OS was 3 of the 4 CAs running that were compromised? take a look and see. Maybe they just had configs? Surely someone with knowledge would be safe right? Guess again and its not a fluke by any means.

Would you like some more reality? well here it comes! Isn't it sad, how like a frightened child afraid to look under the bed, you cower at the truth? if your driver model isn't shit then why does Dell have to run their own repos even though we are talking a teeny tiny subset of hardware? Oh right because Linux shits itself and dies if you use the default repos! Man that is some excellent product you got there! you think I can get better QA than the third largest OEM on the planet? What, you expect me to tell paying customers "Go to the forum, kiss some loser ass, and maybe, just maybe, in a few days someone will have mercy and give you a big pile of bullshit that may or may not make your sound work again"?

Bleeding yet douchey? want some more? nice thing about having the truth on your side, you can keep throwing punches all day! How about how a decade old Windows beat the shit out of Linux on netbooks or how ASUS has given up on your bullshit or how about Walmart running away from linux as fast as it can? You got the crazy koolaid drunk enough to say they ALL are paid shills because they won't do your forum dance or CLI horseshit? Meanwhile your "hero" Torvalds the great says Plans? We don't need no steenkin plans!. Why don't you tell them that at work next week, see how quick you get a pink slip? More? How about you actually have the balls to celebrate getting a whole 1% market share while you are actually lower than JavaME and there is a whole website dedicated To your bullshit and excuses .

You see you whiny little delusional mama's boy, I'm your worst fucking nightmare...a retaile

Thank you for living proof that FOSSies are batshit. you still think that I'm a guy that I can't even get along with and to this very day we don't agree on anything OTHER than the fact you're batshit? delusional much? but if its a pimp slapping of your craptastic OS you want, enjoy! See that's the nice thing about reality, while all you have is insults I have facts! Where are YOUR facts? oh right, they don't exist :-(

Get ready, here they come! Kinda makes that koolaid just a little bitter now, don't it? I believe in using the best tool for the job, but to say Linux is secure or better than any other complex OS is frankly bullshit. Hell I was talking to a 15 year Linux admin on one of the other sites that had gotten so sick of Linux fuckups they were going to BSD and if THAT didn't "just work" they were gonna wash their hands of FLOSS on the desktop and just go Mac.

BTW if you'd like a little more food for thought, what OS was 3 of the 4 CAs running that were compromised? take a look and see. Maybe they just had configs? Surely someone with knowledge would be safe right? Guess again and its not a fluke by any means.

Would you like some more reality? well here it comes! Isn't it sad, how like a frightened child afraid to look under the bed, you cower at the truth? if your driver model isn't shit then why does Dell have to run their own repos even though we are talking a teeny tiny subset of hardware? Oh right because Linux shits itself and dies if you use the default repos! Man that is some excellent product you got there! you think I can get better QA than the third largest OEM on the planet? What, you expect me to tell paying customers "Go to the forum, kiss some loser ass, and maybe, just maybe, in a few days someone will have mercy and give you a big pile of bullshit that may or may not make your sound work again"?

Bleeding yet douchey? want some more? nice thing about having the truth on your side, you can keep throwing punches all day! How about how a decade old Windows beat the shit out of Linux on netbooks or how ASUS has given up on your bullshit or how about Walmart running away from linux as fast as it can? You got the crazy koolaid drunk enough to say they ALL are paid shills because they won't do your forum dance or CLI horseshit? Meanwhile your "hero" Torvalds the great says Plans? We don't need no steenkin plans!. Why don't you tell them that at work next week, see how quick you get a pink slip? More? How about you actually have the balls to celebrate getting a whole 1% market share while you are actually lower than JavaME and there is a whole website dedicated To your bullshit and excuses .

You see you whiny little delusional mama's boy, I'm your worst fucking nightmare...a retaile

Actually I gave up a nearly $100 an hour job for this one because i got tired of dealing with "multi platform" corporate crapfests where some PHB would see some tits of a salesgal and the next thing we knew we'd have to deal with thousands in shitty hardware or software they'd bought. Oh and really sorry to burst your bubble but...guess what? i'm actually typing on one of those systems now. the customer traded it in for a new triple core and it was such a low power unit I decided to keep it as a nettop. Its a circa 2004 Sempron, 1.5Gb of DDR, 200Gb SATA, and the same install of XP, I just cloned the old 80Gb onto the bigger drive..that's it.

You see THAT is what i find so funny, you'll jump through flaming hoops for your "free" OS but think even the most trivial of common sense, like don't open attachments or don't go to dodgy porn sites, must be too hard. hate to again burst your bubble (no I'm not) but frankly there are more than a dozen free AVs out there and pair ANY of those with any browser other than IE and the machine pretty much takes care of itself. it updates itself, defrags itself, protects itself...tell me, what do you think the odds of you getting even a 5 year old Linux up to current without a single forum hunt or CLI crapfest is? I'd say 0.0%. Hell i can install ANY version of Windows from 2K-Win 7 with nothing but a single disc and a shared folder, that's it. you see THIS is why I can charge so cheap because I get paid by the machine more often than by the hour and i can have 3 or 4 machines being installed and it requires ZERO effort, just pop in the disc, point at the shared folder on first boot, go have a sammich. Hell with Win 7 I even make money while just goofing off as any of my customers can just pop up a "Help me!" on my chat client and i can take over and install their software, walk them through hooking up that new printer, it takes minutes and its $35 a pop and they THANK ME for it.

In the end though the simple fact is the numbers don't lie and the BS you're pushing has been pushed so damned many times they actually have a website dedicated To Linux bullshit and excuses. In fact i can just take the top 20 from that site and cover every excuse and BS about FOSS that has been ever used on this site, sad really.

BTW if you'd like a little more food for thought, what OS was 3 of the 4 CAs running that were compromised not too long ago? take a look and see. Maybe they just had bad configs? Surely someone with knowledge would be safe right? Guess again and its not a fluke by any means. Oh and as for that much vaunted linux security, which you seem to think Windows can't possibly compare with? Get ready, but you're OS isn't doing so hot. In fact last time i checked Securina Linux had more critical rated vulnerabilities open than Win 2K3 or Win 2K8.

Actually I gave up a nearly $100 an hour job for this one because i got tired of dealing with "multi platform" corporate crapfests where some PHB would see some tits of a salesgal and the next thing we knew we'd have to deal with thousands in shitty hardware or software they'd bought. Oh and really sorry to burst your bubble but...guess what? i'm actually typing on one of those systems now. the customer traded it in for a new triple core and it was such a low power unit I decided to keep it as a nettop. Its a circa 2004 Sempron, 1.5Gb of DDR, 200Gb SATA, and the same install of XP, I just cloned the old 80Gb onto the bigger drive..that's it.

You see THAT is what i find so funny, you'll jump through flaming hoops for your "free" OS but think even the most trivial of common sense, like don't open attachments or don't go to dodgy porn sites, must be too hard. hate to again burst your bubble (no I'm not) but frankly there are more than a dozen free AVs out there and pair ANY of those with any browser other than IE and the machine pretty much takes care of itself. it updates itself, defrags itself, protects itself...tell me, what do you think the odds of you getting even a 5 year old Linux up to current without a single forum hunt or CLI crapfest is? I'd say 0.0%. Hell i can install ANY version of Windows from 2K-Win 7 with nothing but a single disc and a shared folder, that's it. you see THIS is why I can charge so cheap because I get paid by the machine more often than by the hour and i can have 3 or 4 machines being installed and it requires ZERO effort, just pop in the disc, point at the shared folder on first boot, go have a sammich. Hell with Win 7 I even make money while just goofing off as any of my customers can just pop up a "Help me!" on my chat client and i can take over and install their software, walk them through hooking up that new printer, it takes minutes and its $35 a pop and they THANK ME for it.

In the end though the simple fact is the numbers don't lie and the BS you're pushing has been pushed so damned many times they actually have a website dedicated To Linux bullshit and excuses. In fact i can just take the top 20 from that site and cover every excuse and BS about FOSS that has been ever used on this site, sad really.

BTW if you'd like a little more food for thought, what OS was 3 of the 4 CAs running that were compromised not too long ago? take a look and see. Maybe they just had bad configs? Surely someone with knowledge would be safe right? Guess again and its not a fluke by any means. Oh and as for that much vaunted linux security, which you seem to think Windows can't possibly compare with? Get ready, but you're OS isn't doing so hot. In fact last time i checked Securina Linux had more critical rated vulnerabilities open than Win 2K3 or Win 2K8.

Actually I gave up a nearly $100 an hour job for this one because i got tired of dealing with "multi platform" corporate crapfests where some PHB would see some tits of a salesgal and the next thing we knew we'd have to deal with thousands in shitty hardware or software they'd bought. Oh and really sorry to burst your bubble but...guess what? i'm actually typing on one of those systems now. the customer traded it in for a new triple core and it was such a low power unit I decided to keep it as a nettop. Its a circa 2004 Sempron, 1.5Gb of DDR, 200Gb SATA, and the same install of XP, I just cloned the old 80Gb onto the bigger drive..that's it.

You see THAT is what i find so funny, you'll jump through flaming hoops for your "free" OS but think even the most trivial of common sense, like don't open attachments or don't go to dodgy porn sites, must be too hard. hate to again burst your bubble (no I'm not) but frankly there are more than a dozen free AVs out there and pair ANY of those with any browser other than IE and the machine pretty much takes care of itself. it updates itself, defrags itself, protects itself...tell me, what do you think the odds of you getting even a 5 year old Linux up to current without a single forum hunt or CLI crapfest is? I'd say 0.0%. Hell i can install ANY version of Windows from 2K-Win 7 with nothing but a single disc and a shared folder, that's it. you see THIS is why I can charge so cheap because I get paid by the machine more often than by the hour and i can have 3 or 4 machines being installed and it requires ZERO effort, just pop in the disc, point at the shared folder on first boot, go have a sammich. Hell with Win 7 I even make money while just goofing off as any of my customers can just pop up a "Help me!" on my chat client and i can take over and install their software, walk them through hooking up that new printer, it takes minutes and its $35 a pop and they THANK ME for it.

In the end though the simple fact is the numbers don't lie and the BS you're pushing has been pushed so damned many times they actually have a website dedicated To Linux bullshit and excuses. In fact i can just take the top 20 from that site and cover every excuse and BS about FOSS that has been ever used on this site, sad really.

BTW if you'd like a little more food for thought, what OS was 3 of the 4 CAs running that were compromised not too long ago? take a look and see. Maybe they just had bad configs? Surely someone with knowledge would be safe right? Guess again and its not a fluke by any means. Oh and as for that much vaunted linux security, which you seem to think Windows can't possibly compare with? Get ready, but you're OS isn't doing so hot. In fact last time i checked Securina Linux had more critical rated vulnerabilities open than Win 2K3 or Win 2K8.

Awww...did the poor little FOSSie have his perception bubble busted again? i do find that so delightful. I don't know whether to laugh at you or feel pity at your being so fucking pathetic, I mean I have wrote article on how to make Linux more accessible to small business, what have you done besides wave your tiny penis and scream shill at anybody that won't kiss RMS' sweaty ass? But don't worry i have some nice facts that will make your day, a place where linux is winning? Its vulnerabilities..

Not only does Linux have 4x++ the amount of unpatched security vulnerabilities its competitor Windows Server 2008 does, but it bears 3 remotely exploitable unpatched security vulnerabilities (THE WORST KIND!): one and a two and a three. But hey, what can you expect from an OS that actually has less users than JavaME which is a shitty sub basement OS they put on Tracphones. Of course when you were given an equal chance to compete a decade old Windows beat the shit out of your Linux on netbooks and even ASUS, which invented the whole netbook for the masses with a Linux unit even ASUS has given up on your bullshit How about how you actually have the balls to celebrate getting a whole 1% market share ?

But you stick your head under your little blankie and start crying about how "Only a shill wouldn't love our perfect OS!" while ignoring all the bugs, the vulnerabilities, failures, hell even Dell has to run their own repos just to keep your "precious" from crapping itself. How much money you think that costs Alex? wanna bet dell is LOSING money on every sale? I bet you think they can make it up on volume though huh? You just keep telling yourself I'm a bad man, I must be a "M$ Ninja" when in reality I'm your worst fucking nightmare...a retailer that has tried your shit and seen what a turd it is. hell its not even up to WinXP standards, much less OSX Lion or Win 7. Hell Vista was the biggest POS on the planet and even with MSFT not even having a horse in the race they fricking STOMPED you with a decade old creaking POS, how fucking sad and pathetic do you have to be to get beat by an OS that is so damned old it came out before SATA or even dual cores and it STILL kicks your ass?

Maybe instead of calling names you should volunteer to fix some of the mess huh? i'm sure you think of yourself as some kind of programming genius because you can copypasta into a CLI. Of course in Windows we would call that a script kiddie, but I guess that means genius in your world. Oh a final bit of info, just FYI...Kernel.org pwnage , Linux.com pwned too oh and MYSQL.com throwing malware worse than a "look at teh titties" toipsite in case you missed it. Man gotta be impressed by that kick ass Linux security, them eyes that make bugs shallow must have cataracts huh?

Awww...did the poor little FOSSie have his perception bubble busted again? i do find that so delightful. I don't know whether to laugh at you or feel pity at your being so fucking pathetic, I mean I have wrote article on how to make Linux more accessible to small business, what have you done besides wave your tiny penis and scream shill at anybody that won't kiss RMS' sweaty ass? But don't worry i have some nice facts that will make your day, a place where linux is winning? Its vulnerabilities..

Not only does Linux have 4x++ the amount of unpatched security vulnerabilities its competitor Windows Server 2008 does, but it bears 3 remotely exploitable unpatched security vulnerabilities (THE WORST KIND!): one and a two and a three. But hey, what can you expect from an OS that actually has less users than JavaME which is a shitty sub basement OS they put on Tracphones. Of course when you were given an equal chance to compete a decade old Windows beat the shit out of your Linux on netbooks and even ASUS, which invented the whole netbook for the masses with a Linux unit even ASUS has given up on your bullshit How about how you actually have the balls to celebrate getting a whole 1% market share ?

But you stick your head under your little blankie and start crying about how "Only a shill wouldn't love our perfect OS!" while ignoring all the bugs, the vulnerabilities, failures, hell even Dell has to run their own repos just to keep your "precious" from crapping itself. How much money you think that costs Alex? wanna bet dell is LOSING money on every sale? I bet you think they can make it up on volume though huh? You just keep telling yourself I'm a bad man, I must be a "M$ Ninja" when in reality I'm your worst fucking nightmare...a retailer that has tried your shit and seen what a turd it is. hell its not even up to WinXP standards, much less OSX Lion or Win 7. Hell Vista was the biggest POS on the planet and even with MSFT not even having a horse in the race they fricking STOMPED you with a decade old creaking POS, how fucking sad and pathetic do you have to be to get beat by an OS that is so damned old it came out before SATA or even dual cores and it STILL kicks your ass?

Maybe instead of calling names you should volunteer to fix some of the mess huh? i'm sure you think of yourself as some kind of programming genius because you can copypasta into a CLI. Of course in Windows we would call that a script kiddie, but I guess that means genius in your world. Oh a final bit of info, just FYI...Kernel.org pwnage , Linux.com pwned too oh and MYSQL.com throwing malware worse than a "look at teh titties" toipsite in case you missed it. Man gotta be impressed by that kick ass Linux security, them eyes that make bugs shallow must have cataracts huh?

Awww...did the poor little FOSSie have his perception bubble busted again? i do find that so delightful. I don't know whether to laugh at you or feel pity at your being so fucking pathetic, I mean I have wrote article on how to make Linux more accessible to small business, what have you done besides wave your tiny penis and scream shill at anybody that won't kiss RMS' sweaty ass? But don't worry i have some nice facts that will make your day, a place where linux is winning? Its vulnerabilities..

Not only does Linux have 4x++ the amount of unpatched security vulnerabilities its competitor Windows Server 2008 does, but it bears 3 remotely exploitable unpatched security vulnerabilities (THE WORST KIND!): one and a two and a three. But hey, what can you expect from an OS that actually has less users than JavaME which is a shitty sub basement OS they put on Tracphones. Of course when you were given an equal chance to compete a decade old Windows beat the shit out of your Linux on netbooks and even ASUS, which invented the whole netbook for the masses with a Linux unit even ASUS has given up on your bullshit How about how you actually have the balls to celebrate getting a whole 1% market share ?

But you stick your head under your little blankie and start crying about how "Only a shill wouldn't love our perfect OS!" while ignoring all the bugs, the vulnerabilities, failures, hell even Dell has to run their own repos just to keep your "precious" from crapping itself. How much money you think that costs Alex? wanna bet dell is LOSING money on every sale? I bet you think they can make it up on volume though huh? You just keep telling yourself I'm a bad man, I must be a "M$ Ninja" when in reality I'm your worst fucking nightmare...a retailer that has tried your shit and seen what a turd it is. hell its not even up to WinXP standards, much less OSX Lion or Win 7. Hell Vista was the biggest POS on the planet and even with MSFT not even having a horse in the race they fricking STOMPED you with a decade old creaking POS, how fucking sad and pathetic do you have to be to get beat by an OS that is so damned old it came out before SATA or even dual cores and it STILL kicks your ass?

Maybe instead of calling names you should volunteer to fix some of the mess huh? i'm sure you think of yourself as some kind of programming genius because you can copypasta into a CLI. Of course in Windows we would call that a script kiddie, but I guess that means genius in your world. Oh a final bit of info, just FYI...Kernel.org pwnage , Linux.com pwned too oh and MYSQL.com throwing malware worse than a "look at teh titties" toipsite in case you missed it. Man gotta be impressed by that kick ass Linux security, them eyes that make bugs shallow must have cataracts huh?

Oh look, its the FOSSie, how ya doing ya old Linux loonie? Guess you can't even support your own by supporting buying linux, nope that wouldn't let you foam at the mouth now would it? But don't worry i have some links you might find interesting, its linux pwning day! Enjoy!

Get ready, here they come! Kinda makes that koolaid just a little bitter now, don't it? I believe in using the best tool for the job, but to say Linux is secure or better than any other complex OS is frankly bullshit. Hell I was talking to a 15 year Linux admin on one of the other sites that had gotten so sick of Linux fuckups they were going to BSD and if THAT didn't "just work" they were gonna wash their hands of FLOSS on the desktop and just go Mac.

BTW if you'd like a little more food for thought, what OS was 3 of the 4 CAs running that were compromised? take a look and see. Maybe they just had configs? Surely someone with knowledge would be safe right? Guess again and its not a fluke by any means.

Oh look, its the FOSSie, how ya doing ya old Linux loonie? Guess you can't even support your own by supporting buying linux, nope that wouldn't let you foam at the mouth now would it? But don't worry i have some links you might find interesting, its linux pwning day! Enjoy!

Get ready, here they come! Kinda makes that koolaid just a little bitter now, don't it? I believe in using the best tool for the job, but to say Linux is secure or better than any other complex OS is frankly bullshit. Hell I was talking to a 15 year Linux admin on one of the other sites that had gotten so sick of Linux fuckups they were going to BSD and if THAT didn't "just work" they were gonna wash their hands of FLOSS on the desktop and just go Mac.

BTW if you'd like a little more food for thought, what OS was 3 of the 4 CAs running that were compromised? take a look and see. Maybe they just had configs? Surely someone with knowledge would be safe right? Guess again and its not a fluke by any means.

Oh look, its the FOSSie, how ya doing ya old Linux loonie? Guess you can't even support your own by supporting buying linux, nope that wouldn't let you foam at the mouth now would it? But don't worry i have some links you might find interesting, its linux pwning day! Enjoy!

Get ready, here they come! Kinda makes that koolaid just a little bitter now, don't it? I believe in using the best tool for the job, but to say Linux is secure or better than any other complex OS is frankly bullshit. Hell I was talking to a 15 year Linux admin on one of the other sites that had gotten so sick of Linux fuckups they were going to BSD and if THAT didn't "just work" they were gonna wash their hands of FLOSS on the desktop and just go Mac.

BTW if you'd like a little more food for thought, what OS was 3 of the 4 CAs running that were compromised? take a look and see. Maybe they just had configs? Surely someone with knowledge would be safe right? Guess again and its not a fluke by any means.

Secunia PSI tool ( http://secunia.com/vulnerability_scanning/personal/ ) is very usefull, I agree. It knows the most common software products, so I have to manually take care over a rather small list of software products.
IMHO it should come preinstalled on every new Windows machine.

Didn't a family member of one of the Kaspersky Lab head honchos get snatched by the Russian mob? Frankly they may be afraid to push for enforcement as you say, afraid they will find a loved one in a ditch. There is a good reason why Eastern EU is used so much by malware guys, its because there is still a lot of pretty wild west lawlessness there where you can get by with pretty much anything as long as you have the cash. I can't blame the Kaspersky Lab guys for not getting too nasty with someone that close to their homes. The creator of the botnet also formerly worked at an AV firm which obviously gave him good general knowledge on how to get around AV scanners.

And let me just say before we get the usual "Herp Derp use Linux" karma whoring that 1.- the number one source of infections since Vista has been the USER who bypasses the security for the malware, and 2.- Linux is not immune to vulnerabilities. Hell even Kernel.org and MySQL have been pwned before.

In the end it simply comes down to the fact that criminals are lazy, hell if they weren't they'd be working honest jobs. With over half a billion Windows machines if you even get 1% you've just made yourself a huge payday whereas with Linux you'd have to hit a much bigger percentage to get the same payout. but as we saw with both OSX and the MacDefender and Android which is of course Linux based and all the bugs its got that if you get enough numbers you'll get pwned like everybody else. Operating systems nowadays are some of the most complicated pieces of code on the planet PERIOD. Hell I doubt even Linus Torvalds could tell you with 100% certainty what even a tenth of the code on your average distro is actually calling when you launch so the odds of ANY OS being immune to these kinds of attacks is frankly laughable. Sure you CAN make one damned near immune, by using SELinux or GPOs, but the resulting system will be painful to use and nobody will want to run it.

Didn't a family member of one of the Kaspersky Lab head honchos get snatched by the Russian mob? Frankly they may be afraid to push for enforcement as you say, afraid they will find a loved one in a ditch. There is a good reason why Eastern EU is used so much by malware guys, its because there is still a lot of pretty wild west lawlessness there where you can get by with pretty much anything as long as you have the cash. I can't blame the Kaspersky Lab guys for not getting too nasty with someone that close to their homes. The creator of the botnet also formerly worked at an AV firm which obviously gave him good general knowledge on how to get around AV scanners.

And let me just say before we get the usual "Herp Derp use Linux" karma whoring that 1.- the number one source of infections since Vista has been the USER who bypasses the security for the malware, and 2.- Linux is not immune to vulnerabilities. Hell even Kernel.org and MySQL have been pwned before.

In the end it simply comes down to the fact that criminals are lazy, hell if they weren't they'd be working honest jobs. With over half a billion Windows machines if you even get 1% you've just made yourself a huge payday whereas with Linux you'd have to hit a much bigger percentage to get the same payout. but as we saw with both OSX and the MacDefender and Android which is of course Linux based and all the bugs its got that if you get enough numbers you'll get pwned like everybody else. Operating systems nowadays are some of the most complicated pieces of code on the planet PERIOD. Hell I doubt even Linus Torvalds could tell you with 100% certainty what even a tenth of the code on your average distro is actually calling when you launch so the odds of ANY OS being immune to these kinds of attacks is frankly laughable. Sure you CAN make one damned near immune, by using SELinux or GPOs, but the resulting system will be painful to use and nobody will want to run it.

Didn't a family member of one of the Kaspersky Lab head honchos get snatched by the Russian mob? Frankly they may be afraid to push for enforcement as you say, afraid they will find a loved one in a ditch. There is a good reason why Eastern EU is used so much by malware guys, its because there is still a lot of pretty wild west lawlessness there where you can get by with pretty much anything as long as you have the cash. I can't blame the Kaspersky Lab guys for not getting too nasty with someone that close to their homes. The creator of the botnet also formerly worked at an AV firm which obviously gave him good general knowledge on how to get around AV scanners.

And let me just say before we get the usual "Herp Derp use Linux" karma whoring that 1.- the number one source of infections since Vista has been the USER who bypasses the security for the malware, and 2.- Linux is not immune to vulnerabilities. Hell even Kernel.org and MySQL have been pwned before.

In the end it simply comes down to the fact that criminals are lazy, hell if they weren't they'd be working honest jobs. With over half a billion Windows machines if you even get 1% you've just made yourself a huge payday whereas with Linux you'd have to hit a much bigger percentage to get the same payout. but as we saw with both OSX and the MacDefender and Android which is of course Linux based and all the bugs its got that if you get enough numbers you'll get pwned like everybody else. Operating systems nowadays are some of the most complicated pieces of code on the planet PERIOD. Hell I doubt even Linus Torvalds could tell you with 100% certainty what even a tenth of the code on your average distro is actually calling when you launch so the odds of ANY OS being immune to these kinds of attacks is frankly laughable. Sure you CAN make one damned near immune, by using SELinux or GPOs, but the resulting system will be painful to use and nobody will want to run it.

1 server of the breached CA's ran Windows, but the other 5 run Linux.

As far as DUQU being served up from Linux servers, that indicates those Linux servers were indeed, compromised.

Does Linux have outstanding remote flaws in its KERNEL ALONE currently? Yes, it does -> http://secunia.com/advisories/47199/ (&, they extend into & possibly beyond even the "latest/greatest" 2.6.39.4 builds of it... )

(Perhaps THAT's part of the CA's, & the servers running Linux serving malware up & their being compromised... because Linux gets kernel level remote exploit possibles to this very day, & the 2.6x mainstream kernel series is what? Nearly a decade old now almost?? Windows gets them too, but then, I never said it doesn't, & none of its currently outstanding remote security issues unpatched lack easy workarounds!)

APK

P.S.=> The point I'm making however, isn't about those specifics - it's MORE about how for many years here, all everyone heard around here was "Linux=Secure" & apparently in 2011, that's being shown by security mishaps galore on Linux based OS/Servers as pure "FUD"... because finally? Linux has LARGE marketshare (majority iirc) on "SmartPhones" - it can't hide by "security-by-obscurity" anymore as it has on PC Desktop marketshare (1.29% only, not even a worthy target # for malware makers, & yes - they're after your monies like pickpockets are, & like pickpockets, they DO GO AFTER "CROWDS" & especially those filled with "easy-meat" non-techie end users)!

That's the ONLY thing I've ever had "against" Linux, is the people who blindly spread that around, & now in a way, I feel BAD for them, because of what's happening on Linux & it's variants (especially ANDROID, but @ least that's got SeAndroid now -> http://linux.slashdot.org/story/12/01/14/0214212/nsa-releases-security-enhanced-android )...

... apk