regarding enterprise distribution security

At some points, I was wondering, if it really is that good to use only te free and community-built Debian distribution on my servers, because I've become sceptic with at least two issues: one was when Debian security updates were delayed because of lacking manpower, and the other was when it has been uncovered that there was a patch introduced in the changes of the Debian OpenSSL maintainer, that actually made the software produce

0wning Xen - interesting Xen Security publication

Joana Rutkowska and colleagues gave three interesting talks at this year's Black Hat conference about security of the Xen Hypervisor.

I also wrote a bit more about it in the blog.
Inhalt abgleichen