Slashdot Mirror

← Back to Stories (view on slashdot.org)

SANS/FBI Release Top 20 Security Vulnerabilities

Posted by CowboyNeal on Thursday October 3, 2002 @10:43AM from the lock-them-boxes-down dept.

theBraindonor writes "SANS Institute and the FBI have compiled a listing of the The Twenty Most Critical Internet Security Vulnerabilities. The list is broken down into two groups: Windows Systems and Unix Systems." The list of Unix vulnerabilities is also a list of the network programs I (and presumably many others) use most. It's a good thing there's BugTraq.

1 of 268 comments (clear)

Min score:

Reason:

Sort:

Re:Well, that settles that argument by iabervon · 2002-10-03 13:05 · Score: 2, Redundant

Actually, my list of 10 would be: IIS, IE, Outlook, Apache, random UNIX services you don't mean to have, sendmail, bind, sshd, plaintext passwords, ftpd. There's only 3 Windows ones, because you can probably break into more Windows boxes than you want to with just those 3. None of the other Windows vulnerabilities matter much, because you can't use them to break into UNIX systems.