October 22, 2002

Watch for top Linux/Unix threats

"It's depressing for security professionals to see just how many of the vulnerabilities on the new SANS/FBI Top 20 List have CVE numbers in the 1999-xxxx range -- meaning that they were identified and fixed years ago on some systems. Newer problems appear in each category, but far too many bear old CVE numbers.

The SANS/FBI Top 20 List tracked actual attacks and listed them according to the frequency of their occurrence. I'm going to look at the Unix vulnerabilities, nearly all of which also apply to Linux."

Link: ZDNET.co.uk


  • Security
Click Here!