Slashdot Mirror

← Back to Stories (view on slashdot.org)

New SANS/FBI Top 20 List

Posted by timothy on from the reverse-pecking-order dept.

An anonymous reader submits "The SANS Institute (together with the FBI) published today an updated version of its list of The Twenty Most Critical Internet Security Vulnerabilities. As usual, part of the news is that not too much has changed. The list is split into 10 Unix and 10 Windows vulnerabilities. Leaders are BIND and IIS (last year it was RPC on the Unix side). But some issues (weak passwords) made it into both lists. For last years version, see here. In addition to this list, and a lot of other stuff, the SANS institute is behind DShield and the Internet Storm Center."

2 of 199 comments (clear)

  1. Two security specific entries for Linux/Unix by mytec · · Score: 0, Offtopic

    If I'm finger pointing from the Windows side of the fence, I'd laugh that a security library from which secure applications are built upon and a protocol to increase security both put one at risk and both made a top ten list.

    Both pieces of software are written by persons with security on their minds. Both pieces of software are written in an open fashion.

  2. Re:hurdy gurdy wurdy furdy by woozlewuzzle · · Score: 0, Offtopic

    OK So I f-ed up my html tags and made it all bold. 1. Sue me 2. ???? 3. Profit!