Originally posted by curaga
View Post
More security issues are detected in the GNU/Linux ecosystem because the detection methods are better (everyone has source access). He is also correct that the release timeframes are problematic when you have to go through a tiered change-managment system. I am in a similar situation, and had to implement a re-occurring change-request for kernel updates (I also did the same to manage SSL certificate expiration/renewal and new versions of Apache httpd) on the 1st and 15th of each month.
Basically, the problem is not linux, it is change-managment, and can be mitigated via the use of pre-approved, reoccurring change requests.
F
Comment