Operating Systems > Linux and UNIX
Linux vs Windows a real life comparison
toadlife:
--- Quote ---how can you install programs using a restricted user account ? You can't ... at least not most programs
--- End quote ---
And you can't in Linux either. What's your point?
--- Quote ---... so basically I would need to know which programs contain malware and which ones don't so that I can make sure they don't in any way alter the precious Window$ firewall and maxe it let in all the worms.
--- End quote ---
Well, there is this thing called 'common sense' that comes in real handy in this situation. If you download the source of a program do a compile/install that requires root, how do you know it won't turn off your firewall and root your system?
--- Quote ---Well then the problem seems to be malware not the firewall ... but wait how do we get rid of that ... I have tried myself ... I've gotten programs to do it ... but there were still worms and trojans on my machine
--- End quote ---
I think based on this thread, you definitely shouldn't use Windows. Linux or OSX are good OSs for you to use. Just hope the OS you use doesn't ever become popular.
toadlife:
--- Quote from: Kat ---Preformance
Windows: After a few hours of disuse, Windows will choke and sputter for about two minutes upon resuming. Then function continues normally.
Linux: Starts right up like it had never been idle
--- End quote ---
See this thread for a possible explanation on why this happens.
Orethrius:
--- Quote from: toadlife ---And you can't in Linux either. What's your point?
--- End quote ---
Actually, I've not found ONE program that I can't run from my user home, configged and installed as *me* rather than root or via sudo. Even Grip gives me some functionality, albeit limited, and THAT is mostly because I neglected to config my CD drive to give mount permissions to user. To the Windows end, why in HELL would CDex ask me for my admin password for installation, particularly when it's going to a user Documents folder? Bad coding made to work for an awkward system configuration is the sole reason I can figure.
--- Quote from: toadlife ---Well, there is this thing called 'common sense' that comes in real handy in this situation. If you download the source of a program do a compile/install that requires root, how do you know it won't turn off your firewall and root your system?
--- End quote ---
Not that I don't appreciate your subtle ad hominem ex parte, but anyone who runs programs that NEED to be run as root should be shot. There's not a single valid reason that I can think of for that behaviour on any system, barring bad coding practices. Having said that, at least we can CHECK the source, so we can't claim ignorance of the "problem" at hand (assuming it hasn't been somewhat mitigated by userspace).
--- Quote from: toadlife ---I think based on this thread, you definitely shouldn't use Windows. Linux or OSX are good OSs for you to use. Just hope the OS you use doesn't ever become popular.
--- End quote ---
What is it with you and false premises? The *only* time that I can see that logic functioning *anywhere* in history is with Windows. That's like saying that if Chevys ever become as popular as Jaguars, they'll break down every bit as often. If you'll notice, Chevy has one of the BEST mechanical histories *IN THE WORLD* whereas Jaguars are literally in the shop every other week. Given, it's gotten somewhat better with the Ford buyout, but they're still pretty bad.
Now, don't get me wrong; I'm not saying you won't encounter minor annoyances (sometimes major, but more oftentimes minor) and quirks from time to time - you will. The point is that you're trying to argue that the future distribution of a product will affect its current security, and that - my friend - is bad logic.
Having said all that, I'm quite pleased to see you comfortable with your current platform, and at a level of expertise where you can make it perform to your expectations. You have achieved a level of mastery that few have bothered and will bother to reach. :cool:
toadlife:
--- Quote from: Orethrius ---Actually, I've not found ONE program that I can't run from my user home, configged and installed as *me* rather than root or via sudo.
--- End quote ---
I was referring to the standard practice of using package management systems to install software. This almost allways requires root. yes, I've downloaded, configed and installed programs in my own folder in BSD, but only becuase the application was not in the FreeBSD ports system. I'v also downloaded an run programs from my userspace for Windows too - though as you know, these are not nearly as common.
--- Quote from: Orethrius --- and THAT is mostly because I neglected to config my CD drive
--- End quote ---
Config your CD drive as root, right?
--- Quote from: Orethrius ---To the Windows end, why in HELL would CDex ask me for my admin password for installation, particularly when it's going to a user Documents folder? Bad coding made to work for an awkward system configuration is the sole reason I can figure.
--- End quote ---
Good question. I've used CDEx. Last time I did, I jsut unzipped it and ran it. CDEx might require low level driver access which means the proper permissions must be set for regular users, or it must be run as admin. Or maybe CDEX installs a driver?
--- Quote from: Orethrius ---...but anyone who runs programs that NEED to be run as root should be shot.
--- End quote ---
Have you ever burned a CD in linux?
If not, have you ever executed any of the following programs in linux?
--- Quote ---/bin/su
/bin/ping
/bin/mount
/bin/umount
/var/qmail/bin/qmail-queue
/usr/bin/chfn
/usr/bin/chsh
/usr/bin/crontab
/usr/bin/chage
/usr/bin/expiry
/usr/bin/sperl5.6.1
/usr/bin/newgrp
/usr/bin/passwd
/usr/bin/gpasswd
/usr/bin/procmail
/usr/bin/suidperl
/usr/lib/misc/pt_chown
/usr/sbin/unix_chkpwd
/usr/sbin/traceroute
/usr/sbin/pwdb_chkpwd
--- End quote ---
That is a list of the files in Gentoo (and most other linux distros) that have the suid bit set on them by default becasue they won't work as non-root users otherwise."
--- Quote from: Orethrius ---There's not a single valid reason that I can think of for that behaviour on any system, barring bad coding practices.
--- End quote ---
I agree, but on any OS, there are certain apps that need elevated privileges, regardless of how well they are programmed, because the design of the OS requires it.
--- Quote ---What is it with you and false premises? The *only* time that I can see that logic functioning *anywhere* in history is with Windows.
--- End quote ---
In order for a premise to be false it must be proven so first. But, feel free to call mine flawed if you like. Semantics nazism aside, you must have missed all of the viruses that affected the Mac when they had a relevant markethsare. The biggest collection of flawed premises I see is when people claim linux would be malware free if it had a large desktop following.
--- Quote ---That's like saying that if Chevys ever become as popular as Jaguars, they'll break down every bit as often.
--- End quote ---
And I bet you there were 500 times more Chevys that broke down last year than Jaguars. That of course means nothing, but the statistics could be twisted to indicate that it does. On the same note, the fact that 500 times more Windows machines were infected or hacked last year than linux machines it doesn't neccesarily mean Windows is flawed. The numbers, use and users between the two platforms are completely different, and therefore straight simple stats comparisons mean very little.
--- Quote ---Now, don't get me wrong; I'm not saying you won't encounter minor annoyances (sometimes major, but more oftentimes minor) and quirks from time to time - you will. The point is that you're trying to argue that the future distribution of a product will affect its current security, and that - my friend - is bad logic.
--- End quote ---
IMO, my logic is quite sound, and I will explain why. Lets just pretend that Linux's poularity exploded on the desktop and it gained, oh...50% desktop marketshare. I'm not saying you or anyone else here has said these things, but these are all arguments I've heard multiple times by linux zealots on the net.
Flawed premise: Linux users are security concious, therefore if it became popular on the desktop malware wouldn't be prevelent.
The reality is, most computer users are completely ignorant of how their computer works, and don't have any inclination to learn. hell, with the current rash of n00bular linux distros the same could even be said of many linux users now. Look at how succesful the Sober worm has been on Windows. There have been, what, 500 variants of Sober over the last year or so? The Sober worm relies entirely on user interaction to propogate. The user must open up a zip file and execute the file inside to get it to work. If that's not a damning portrait of the state of overall security awareness, then I don't know what is. So what current feature of linux is going to stop Joe User from opening up that gzip archive he got in the email with Ark and runnning the script, or installing the rpm inside? What feature of linux is going to stop Joe blow from installing that firefox extension that "cracks.ru" says he needs to download the latest keygen for Quake V? What feature in linux is going to stop Joe Blow from installing that trojaned loki installer of Quake V that he just downloaded from KTorrent?
Flawed premise: Because linux is open source, more eyes get ot look at the code and flaws are discovered faster.
Besides not having seen a shred of proof of this, I can give many reasons why this doesn't make much sense. First of all flaws are usually discovered by accident, or by simply feeding an application garbage and getting lucky, not by browsing source code. Flaws have gone unoticed in Open source operating systems for years. What's the excuse for that? Yes, it's possible to find flaws by looking at the code, but what percentage of the population actually has the ability, let alone the will to even bother trying to find flaws in source code? Besides that leads to another false premise - that the people who find all of these extra flaws would not use them maliciously.
Flawed premise: Vulnerabilities in Linux are fixed faster than Vulnerabilities in Widnows, therefore linux users will be less exposed.
Getting fixes out fast is great, but unfortunetely people tend to not install them. And it seems, the more ignorant users and apathetic admins you have, the more boxes you will find that go unpatched. My Awstats weblogs for toadlife.net show that 15% of firefox users still run verison 1.04 or less, which is vulnerable to multiple remote code execution vulnerabilites.Imagine if firefox had a 90% browser marketshare. OS and App Vulns aside, stupid users are the biggest vulnerability and the patch for that is nowhere in sight.
False premise: Linux users will be protected from worms and trojans because they don't run their machines as root.
The only thing running as a non-root users will protect you from is complete system compromise. Trojans don't need your root password to do the things that modern trojans do, like connect to IRC servers and send email, or grab personal data. Not that running with least privilege is bad - it's great, but it's certainly no panacea.
Flawed Premise: Files in unix are not executbale by default so users won't be hit by mail viruses.
If the file is zipped, the executable bit has already been set for you. ;) (read:The Sober Virus)
--- Quote ---Having said all that, I'm quite pleased to see you comfortable with your current platform, and at a level of expertise where you can make it perform to your expectations. You have achieved a level of mastery that few have bothered and will bother to reach. :cool:
--- End quote ---
Well my current platform is both Windows and Unix, so I'm not sure what you are getting at with that. My competence in Widnows is out of neccesity - it's my job. Any competence I have in UNIX is purely out of my liking for it, as it's not required (but has become very usefull) at my job.
piratePenguin:
--- Quote from: toadlife ---
Flawed premise: Linux users are security concious, therefore if it became popular on the desktop malware wouldn't be prevelent.
--- End quote ---
Who's been saying this? I hate when people say stuff like that, because it actually gives people like you some amunition. If only they'd just straighten them out a little bit, so they're actually sensible and perfectly correct. Or maybe they were straight and someone bent them, I guess I'll never know.
Some GNU/Linux distributions try to make their users more security concious by explaining the root account etc. If these distributions became popular, most likely the users would be more security concious and most likely they won't be getting themselves infected with as much malware.
--- Quote ---
Flawed premise: Because linux is open source, more eyes get ot look at the code and flaws are discovered faster.
--- End quote ---
I can see how few (but still, possibly important) flaws would probably be discovered by looking through the code, but fixing them is a different story entirely.
--- Quote ---
Yes, it's possible to find flaws by looking at the code, but what percentage of the population actually has the ability, let alone the will to even bother trying to find flaws in source code?
--- End quote ---
If one outside developer ever downloads and takes a look at the source code, that's one extra developer that's taken a look at the code and just might discover a flaw somewhere.
A good thing is a good thing no matter how insignificant it is.
--- Quote ---
Besides that leads to another false premise - that the people who find all of these extra flaws would not use them maliciously.
--- End quote ---
Now we're talking.
I imagine that most (not necessarily all) people who find a flaw in some free source code, and have the choice to exploit it or submit a bug/patch/email to the project's bug tracking software/mailing list, but if you don't then that's fine.
--- Quote ---
Flawed premise: Vulnerabilities in Linux are fixed faster than Vulnerabilities in Widnows, therefore linux users will be less exposed.
Getting fixes out fast is great, but unfortunetely people tend to not install them.
--- End quote ---
Gawd, people who do install them will be secure, faster. Good thing!
--- Quote ---
My Awstats weblogs for toadlife.net show that 15% of firefox users still run verison 1.04 or less, which is vulnerable to multiple remote code execution vulnerabilites.Imagine if firefox had a 90% browser marketshare. OS and App Vulns aside, stupid users are the biggest vulnerability and the patch for that is nowhere in sight.
--- End quote ---
Firefox 1.5 has an intergraded update client, and most GNU/Linux distributions will have the latest Firefox versions in their repositories. I'd say that nearly all Firefox
Navigation
[0] Message Index
[#] Next page
[*] Previous page
Go to full version