Four Linux distributors, including Red Hat Inc. and SuSE, last week took issue with a recent report by Forrester Research that compared the security of Linux and Windows. In a joint statement, the four said: “Despite the reports claim to incorporate a qualitative assessment of vendor reactions to serious vulnerabilities, it treats all vulnerabilities as equal, regardless of their risk to users. As a result, the conclusions drawn by Forrester have extremely limited real-world value for customers assessing the practical issue of how quickly serious vulnerabilities get fixed.”
Forrester senior analyst Laura Koetzle recently released her year-long study of published security vulnerabilities and their fixes during the time span from June 1, 2002 to May 31, 2003.
Read the full story at CRN