Slashdot Mirror
Linux Security: Reflections on 2002, Eye on 2003
Mirko Zorz writes "Here are the reflections on Linux security in 2002 and predictions for 2003 by Bob Toxen, one of the 162 recognized developers of Berkeley UNIX and author of the acclaimed book "Real World Linux Security" already in its 2nd edition. Read more at Help Net Security."
done that once tonight thanks, it's hitting -10 here and a lot of rain yesterday.
Well more like 90 but it was fun.
thank God the internet isn't a human right.
What is an "Americanized river"? Thanks to the Clean Water Act, rivers in the US are a lot cleaner than rivers in Europe or Asia (though GW Bush would like to gut such protections, he hasn't yet succeeded).
Getting into recommendations, however... Saying that everyone should NMAP with OS detection every e-commerce site they go to is pretty unsound advice. Besides which, he's making a huge blanket statement that IIS admins all suck, and that any site using IIS/MS on the backend is a huge risk that no one should take.
He must not buy much on the web then, unless he keeps a root shell around to run with -O. Quicker to just use NetCraft.
But even the characterization of all the Operations staff at Ebay, Staples.com and Barnes and Noble as being completely inept soup-fed-droolers, since they run IIS and therefore are risking their customers, is childish and whiny. Why should I trust a Linux admin over an NT admin, in the context of ECommerce? One would hope that if Barnes and Noble runs an ECommerce site, that they would have the foresight not to hire a wet behind the ears MCSE.
If Staples, bn.com, and Ebay all get owned, I might have to rethink my rant I guess...
The way towards security is not in me as an admin saying "Buy Linux servers, they're going to be 'secure'". The way towards security is in an admin saying "What you running, w2k? We can secure that". Security is not a product, and Linux does (clearly) not equal security.
I like music