Re: Positive press for Debian's security team

To: debian-security@lists.debian.org
Subject: Re: Positive press for Debian's security team
From: Matt Zimmerman <mdz@debian.org>
Date: Tue, 30 Mar 2004 15:52:49 -0800
Message-id: <[🔎] 20040330235249.GR7200@alcor.net>
Mail-followup-to: debian-security@lists.debian.org
In-reply-to: <[🔎] NDBBKABJBJCIJNAELLKEOELPJDAA.jimm@simutronics.com>
References: <[🔎] 20040330225936.GA4811@nsx.arthem.net> <[🔎] NDBBKABJBJCIJNAELLKEOELPJDAA.jimm@simutronics.com>

On Tue, Mar 30, 2004 at 05:24:29PM -0600, James Miller wrote:

> > Positive press for Debian's security team.
> >
> > Using numbers from a pair of metrics, Forrester Research's
> > recommendation was "businesses that value quick patches look to
> > Microsoft and Debian".
> >
> > Full article at
> > http://story.news.yahoo.com/news?tmpl=story&cid=1738&e=2&u=/zd/200
> 40330/tc_zd/123143
> 
> "Debian had the least number of distribution days of risk for the Linux
> vendors but only fixed 96.2 percent of the vulnerabilities."
> 
> I wonder what 3.8% wasn't fixed?

A better question would be how they determined the applicability of the
vulnerabilities.  This is a non-trivial job even for many individual
vulnerabilities, and they claim to have surveyed hundreds.

-- 
 - mdz

Reply to:

Follow-Ups:
- Re: Positive press for Debian's security team
  - From: Javier Fernández-Sanguino Peña <jfs@computer.org>

References:
- Positive press for Debian's security team
  - From: Jones <jones_mb@yahoo.com>
- RE: Positive press for Debian's security team
  - From: "James Miller" <jimm@simutronics.com>

Prev by Date: Re: Positive press for Debian's security team
Next by Date: do you rmemeber me?
Previous by thread: RE: Positive press for Debian's security team
Next by thread: Re: Positive press for Debian's security team
Index(es):
- Date
- Thread