[Date Prev][Date Next] [Thread Prev][Thread Next] [Date Index] [Thread Index]

Re: I think we should respond to claim that Debian is the Most Vulnerable Operating System

On 3/11/20, Paul Tagliamonte <paultag@ubuntu.com> wrote:
> Two main points if we do respond -
>
> 1) CVEs and other vuln databases are not a scoreboard. The most insecure
> code will have zero CVEs since no one's identified issues with it.


My brain's translating that to alternately say.... the more something
is used, the more exposed it is, and that's when you'll *happily*
FIND-N-FIX those vulnerabilities.

Something that's not used or is not used very often? Who's around to
find anything wrong with it.....?


> 2) This includes all software available to apt. This means you have to
> include all Windows apps in the Microsoft app store when considering CVE
> totals.


*waving literally from the Peanut Gallery (Georgia)*

Cindy :)
-- 
Cindy-Sue Causey
Talking Rock, Pickens County, Georgia, USA

* runs with birdseed *
Reply to: