Operating Systems > Linux and UNIX

Reality Check: How Safe Is Linux?

<< < (2/3) > >>

Faust:

quote:
Additionally, many of the programs included in Linux distros have programming errors that lead to things like privilege escalation, whereby a common user tricks a program into thinking it has more privileges than it does, Wreski said.

--- End quote ---

SUID programs really.  A good admin will keep SUID access to a minimum.  And if it's not installed, you cant exploit it, so which OS enables you more choice over what you do and dont install?  *cough* Internet Explorer *cough*  At the end of a day a good admin is the crucial point, which brings us to:

[ June 13, 2003: Message edited by: Faust ]

Faust:

quote:
Linux networks can be more insecure than Windows or Macintosh networks for the simple reason that the management and configuration of Linux is more complex. "A firewall is only as good as its administrators," Hichert said. "This is why people are running into security issues." Programs such as Astaro Security Linux make it easier to configure Linux networks by providing a GUI interface in place of a command line.

--- End quote ---

Well there we go.    Administrating a secure server should *not* be left to the incompetent.  This is obvious - and if an incompetent admin feels they can secure a server of *any* OS then they are fooling themselves.

Faust:
[offtopic]
now that that's all done why cant i post over a certain word limit?  :confused:  
[/offtopic]

Oh and being more easily modifiable wouldnt Linux systems be better able to be changed in order to face new threats?

Faust:

quote:
is to deny a user access to the sound - following such sound advice as

--- End quote ---

Hey wow I made a pun!  I feel so special.  

Calum:
any system administrated by an idiot (or even someone ignorant in a lot of cases) can be incredibly insecure, and of course the system relies on the security of all the applications as well as the firewall stuff and all that, however the *IX setup has a lot of good failsafes and limiters built in like permissions etc, that systems such as windows do not have, or do have as an arbitrary afterthought. also the open source nature of the linux system and many of its applications and utilities (by comparison with the closed nature of mswindows and most of its software) means potential exploits (holes) get spotted and fixed very quickly, while a simple, easy and dangerous exploit in a closed source piece of software often can and does go unnoticed for years, and is not fixed for weeks after knowledge of it is made public.

However i agree the best computer security by far comes from sense, knowledge and intelligence.

[ June 13, 2003: Message edited by: Calum ]

Navigation

[0] Message Index

[#] Next page

[*] Previous page

Go to full version