Let's have less bluff'n'bluster and a few hard facts please? I'm perfectly willing to listen to reasoned argument and I'm sure that I've run (and am still running) Joomla and Mambo
website hostings at least as long as you have but I've not encountered a single security issue. I concede I may have been unusually lucky, but that in itself is a rarity regarding my personal webhosting experiences ...
I'm equally bemused by the flak that is posted on the Joomla forum where the designers and people qualified to comment suggest in the vast majority of cases that it's not down to Joomla per se, but server settings, so who does one believe?
I didn't pay a huge amount of attention to all the debate on here a while ago in which at least one of eUKhost's servers was compromised, so I imagine from Mark's gripes in this thread that he's had some bitter experience and has chosen to remind us — the question is, were YOU affected in the same way ('cos you were on the same server)? I guess I'll satisfy my own curiosity now by trawling back through those threads ...