Wow. I'm ever so stunned that, even adding app problems in, Win XP is less vulnerable than Linux. Actually what really shocks me is that there are only two groups in Linux. Coming from extensive use of Unix flavors, I can't imagine why you wouldn't have brought over more flexibility from the Unix camp. Kinda wish the author had included stats for Win ME, or has everyone done the right thing and dumped it? :-D I wonder if there are follow-up stats on the average time differential between the discovery of a given vulnerability and when it was patched. That would give us a clearer view as to one of the much-touted advantages of open source vs. proprietary software: the speed with which errors are detected and fixed.
