Why CERT Should Be Decertified (1)
“Last week the CERT Institute developed at Carnegie Mellon
University and now part of the ‘the operational arm of the National
Cyber Security Division (NCSD) at the Department of Homeland
Security,’ issued an annual systems security review and summary
that drew widespread public attention. Both the computer press and
the mainstream media used this report as the basis for headlines
that looked like this one Linux/Unix more flawed than Windows,
CERT says from news.com…”
Secunia and Red Hat Defense of Linux Laughable
“In last Friday’s article ‘Experts question Windows win in flaw
tally,’ scores of security experts came out to defend Linux and
Unix. A spokesperson for Secunia questioned the count claiming that
Linux/Unix vulnerabilities were less severe because a smaller
percentage of Linux and Unix vulnerabilities were remotely
exploitable. Red Hat’s Cox said that ‘Linux operating systems were
more secure for businesses than Windows platforms, as fewer
vulnerabilities were critical and patches were brought out more
quickly.’ Since these claims are easily verifiable using Secunia’s
own advisory database, let’s have a look…”