You put a linux box in place and a windows box in place. Which one will be exploited first, just sitting there?

Now, if you install applications, then they are opening up avenues of attack.

And the big difference is, if it is a windows box, they load on a keystroke logger and get all of your information. If you have a linux box with a compromised sendmail config, someone could send an email through your system. Compare this to how many windows email servers are working as a relay that is forwarding spam?

Should Sendmail be secure? Sure. Do I use it? No. We use Domino on Linux and it has been a good combination.