Ethical Hacking

Learn to find vulnerabilities before the bad guys do! Gain real world hands on hacking experience in our state of the art hacking lab. Course designed and taught by expert instructors with years of penetration testing experience. 12 student maximum in every class. Certification attempt included in every package.
Computer Forensics Training at InfoSec Institute

Gain the in-demand skills of a certified computer examiner, learn to recover trace data left behind by fraud, theft, and cybercrime perpetrators. Discover the source of computer crime and abuse at your organization so that it never happens again. All of our class sizes are guaranteed to be 12 students or less to facilitate one-on-one interaction with one of our expert instructors.




Network Security Focus-Linux
[Top] [All Lists]
<prev [Date] next>
[Advanced]
 <prev [Thread] next>

Re: Red Hat vs Debian Linux: overall security

from [Cristobal Palmer] Network Security [Permanent Link]
Subject: Re: Red Hat vs Debian Linux: overall security
Date: Tue, 28 Nov 2006 13:18:07 -0500 
Debian is _huge_

cmpalmer@ltsp:~/Desktop$ cat allpackages.en.txt |wc -l
17498

...and is much more community-oriented (ie. there are vulnerabilities
in little-used apps that are maintained by a volunteer and not a paid
developer). BTW, you're talking about RHEL, right?

It would make much more sense to compare them apples-to-apples by
narrowing your focus to a minimal install plus certain very common
apps (such as apache).

I'm not saying they're equivalent in terms of security. I'm just
saying that the comparison based on www.securityfocus.com/bid is not a
realistic one.

-CMP

On 27 Nov 2006 17:44:30 -0000, tjanas@austin.rr.com
<tjanas@austin.rr.com> wrote:

I am evaluating the overall security of Red Hat linux vs Debian.  I've been told that 
Debian has many more vulnerabilities than Red Hat.  I've also been told that Red Hat is 
quicker to release security patches than Debian is for the "stable" release.  
Can someone point me to a good overall assessment of the two?  Using this tool: 
www.securityfocus.com/bid  I see that Debian has 17 pages worth of issues but Red Hat has 
surprisingly few.  Am I misinterpreting the results from this tool?



--
Cristobal M. Palmer
UNC-CH SILS Student -- ils.unc.edu/~cmpalmer
TriLUG Vice Chair
"There are many roads to enlightenment, and thus many roads back to
the One True Debian" --crimsun

[More messages with this same subject...]




<Prev in Thread] Current Thread [Next in Thread>
Previous by Date:  Re: How to check UID of process on the other side of local TCP/UDP connection, Greg Metcalfe
Next by Date:  Re: How to check UID of process on the other side of local TCP/UDP connection, Vladimir Mitiouchev
Previous by Thread:  RE: Red Hat vs Debian Linux: overall security, terry
Next by Thread:  Re: Red Hat vs Debian Linux: overall security, Uday K. MOORJANI
Indexes:  [Date] [Thread] [Top] [All Lists]