Sorry this guy misses a critical point.

Linux hidden stuff is no more hidden than microsoft.

Ie the developers channels find and fix stuff fast if there is a breach risk.

Note distro developers make up a large section core of the linux kernel as you would expect this is normal.

No central point good reason almost all distros have a central point. This is important ie a distro kernel X has had a patch added that caused a breach does not need to be reported to the www.kernel.org but to the distro.

The bug reporting system works like this Report in the buglists of you distro your distro checks it out might fixit or might just report it to www.kernel.org(the core developers). This is a very neat system and a very strong system against hackers. No single point for a hacker to watch and go Yep got a breach now I have them.

Secuitry by openness no one does this. Provide to much infomation to check and trace slows hackers down. Also all system require to register so if something goes wrong they can hunt you down.

All bugs to standard kernel go to the linux-kernel mailing list. That goes to trusted users to a point ie if explots start happing before patching they can search the list.

[ reply ]

Link to this comment: http://www.securityfocus.com/comments/columns/296/30313#30313