In these fire starter threads, I really (only) enjoy reading it when people can make there objective arguments backed up by leading standards organizations and security evaluation criteria /NSA/CIA/DIA/ISO/DOD/NCSC/ ect....

Everyone look through the exploit archives.

I thought nearly all Linux/UN*X exploits require code patching.

I also thought nearly all Windows NT line exploits can be resolved via correct configuration. ("though code patching is made availible for simplicity sake")

I am by no means a "security expert" it's not my field though I do work with some of these systems, but mainly custom made Texas Instruments DFS-III's & VII's hooked up to XP to run alot of GPS, ect.. software that is only supported on the windows platform. I know how to configure XP from it's "loose by default state" so I'm not losing sleep over the security of my data at night.