Linux Security: Reflections on 2002, Eye on 2003

Mirko Zorz writes "Here are the reflections on Linux security in 2002 and predictions for 2003 by Bob Toxen, one of the 162 recognized developers of Berkeley UNIX and author of the acclaimed book "Real World Linux Security" already in its 2nd edition. Read more at Help Net Security."

This FP is for Jesus!

Word!

Re:This FP is for Jesus!

jesusgeeks.net

I'm in your base

compromising your linux security

Hullo, my name is TOXIN

Bob Toxen

That's a sweet last name. :)

Re:Hullo, my name is TOXIN

Did you see his picture? That's his nickname.

driving 100 mph on ice

[oliverthered]

done that once tonight thanks, it's hitting -10 here and a lot of rain yesterday.

Well more like 90 but it was fun.

Re:Real World Computer Security

[JoeBuck]

What is an "Americanized river"? Thanks to the Clean Water Act, rivers in the US are a lot cleaner than rivers in Europe or Asia (though GW Bush would like to gut such protections, he hasn't yet succeeded).

IN SOVIET RUSSIA...

[Kethinov]

IN SOVIET RUSSIA... Linux secures you.

Do we really need this guy to tell us how secure Linux is? Want to see something funny? Do a search on Microsoft's website for Linux. Tons of articles about how "insecure" Linux is. If Microsoft is so paranoid about Linux's great security that it has to spam its own website with anti-Linux security articles, that should speak for itself! :)

Re:IN SOVIET RUSSIA...

If people on community sites need to write tons of posts about how Microsoft is scared of Linux, that should speak for itself!

Amen Brother!

You trolled this post in Jesus' name!

Yes, you chose well to cast your nets in slashdot!

This is the day that the lord hath made!

Let us rejoice and be glad in it!

Praise the lord!

Jesus! I love Jesus!

He told us to sin no more!

He forgave us all!

He helped giligan get off the island!

If a first post for Jesus is off topic, then praise his name fo' I don't ever want to be on-topic!

Jesus led his great congregation of a couple thousand people into a great field and fed everyone fish sticks!

Jesus knows your favorite food and he wants to feed you all!

Invite him into your heart!

Yes! Jesus! Thankyou for the kindness! We need you to come back soon and I'll never stop being thankful!

Toxic, indeed

[xrayspx]

The article struck me as a simplified rundown of what's been happening. Which is good, because that's what it was supposed to be.

Getting into recommendations, however... Saying that everyone should NMAP with OS detection every e-commerce site they go to is pretty unsound advice. Besides which, he's making a huge blanket statement that IIS admins all suck, and that any site using IIS/MS on the backend is a huge risk that no one should take.

He must not buy much on the web then, unless he keeps a root shell around to run with -O. Quicker to just use NetCraft.

But even the characterization of all the Operations staff at Ebay, Staples.com and Barnes and Noble as being completely inept soup-fed-droolers, since they run IIS and therefore are risking their customers, is childish and whiny. Why should I trust a Linux admin over an NT admin, in the context of ECommerce? One would hope that if Barnes and Noble runs an ECommerce site, that they would have the foresight not to hire a wet behind the ears MCSE.

If Staples, bn.com, and Ebay all get owned, I might have to rethink my rant I guess...

The way towards security is not in me as an admin saying "Buy Linux servers, they're going to be 'secure'". The way towards security is in an admin saying "What you running, w2k? We can secure that". Security is not a product, and Linux does (clearly) not equal security.