Slashdot Mirror


Looking Back At Windows Security In 2003

thebatlab writes "Help Net Security has an interesting look at security in Windows during 2003, with various blurbs from related parties at Microsoft as well as security 'bigwigs' such as Russ Cooper. It's interesting to read the comments from external parties, as they tend to be very reasoned comments and don't simply attack away over recent 'indiscretions' and 'security lapses' Microsoft has had over the year."

14 of 327 comments (clear)

  1. Its crap but just as crap as anyone else by rkz · · Score: 0, Troll

    Microsoft have had their share of vunerabilities over the last year but not significantly more than linux has, this kind of article always appears on slashdot poking fun at windows security but linux is not much better. Apt-get is not that much better than Windowsupdate.microsoft.com.

    I work for a fortune 500 company and we have been considering switching from Windows NT 4 to either Windows Server 2003 or Linux. After much testing we decided to stay on windows for virtually everything except the Primary Domain Controller which scaled much better under Debian.

    For file servers we found that samba caused some shares to dissapear occasionally and so we stuck to Windows. For email we needed exchange so we had no choice. For firewall we kept windows because the software we currently use performs much better on windows than Linux.

    But as far as security goes we could see on clear advantes of one platform over the other.

    1. Re:Its crap but just as crap as anyone else by Anonymous Coward · · Score: -1, Troll

      wow. i came to the exact opposite conclusion.

      samba has worked beautifully for almost everything we have. except as a primary domain controller w/AD for a really large organization.

      samba can't act as a domain controller providing AD services.

      which means that your fortune 500 company (please tell us, so we know who to avoid) has determined to keep running on an NT4 style domain. real swift.

      if your a really large organization and DON'T want to write your own solution, you'll use a few microsoft AD/domain servers, and then use samba for everything else.

      cisco/netbsd for the firewalls

      if you HAVE to have exchange, put it on a private subnet and have it forward/receive through a postfix middleman.

      it's pretty obvious, you guys are out of your leagues.

      you should all be fired.

  2. PINGULAR EATS DEAD RACOON ANUSES by Anonymous Coward · · Score: -1, Troll

    *_g_o_a_t_s_e_x_*_g_o_a_t_s_e_x_*_g_o_a_t_s_e_x_*_
    g_______________________________________________g_ _
    o_/_____\_____________\____________/____\_______o_ _
    a|_______|_____________\__________|______|______a_ _
    t|_______`._____________|_________|_______:_____t_ _
    s`________|_____________|________\|_______|_____s_ _
    e_\_______|_/_______/__\\\___--___\\_______:____e_ _
    x__\______\/____--~~__________~--__|_\_____|____x_ _
    *___\______\_-~____________________~-_\____|____*_ _
    g____\______\_________.--------.______\|___|____g_ _
    o______\_____\______//_________(_(__>__\___|____o_ _
    a_______\___.__C____)_________(_(____>__|__/____a_ _
    t_______/\_|___C_____)/______\_(_____>__|_/_____t_ _
    s______/_/\|___C_____)_______|__(___>___/__\____s_ _
    e_____|___(____C_____)\______/__//__/_/_____\___e_ _
    x_____|____\__|_____\\_________//_(__/_______|__x_ _
    *____|_\____\____)___`----___--'_____________|__*_ _
    g____|__\______________\_______/____________/_|_g_ _
    o___|______________/____|_____|__\____________|_o_ _
    a___|_____________|____/_______\__\___________|_a_ _
    t___|__________/_/____|_________|__\___________|t_ _
    s___|_________/_/______\__/\___/____|__________|s_ _
    e__|_________/_/________|____|_______|_________|e_ _
    x__|__________|_________|____|_______|_________|x_ _
    *_g_o_a_t_s_e_x_*_g_o_a_t_s_e_x_*_g_o_a_t_s_e_x_*_


    Important Stuff: Please try to keep posts on topic. Try to reply to other people's comments instead of starting new threads. Read other people's messages before posting your own to avoid simply duplicating what has already been said. Use a clear subject that describes what your message is about. Offtopic, Inflammatory, Inappropriate, Illegal, or Offensive comments might be moderated. (You can read everything, even moderated posts, by adjusting your threshold on the User Preferences Page) If you want replies to your comments sent to you, consider logging in or creating an account.

    Important Stuff: Please try to keep posts on topic. Try to reply to other people's comments instead of starting new threads. Read other people's messages before posting your own to avoid simply duplicating what has already been said. Use a clear subject that describes what your message is about. Offtopic, Inflammatory, Inappropriate, Illegal, or Offensive comments might be moderated. (You can read everything, even moderated posts, by adjusting your threshold on the User Preferences Page) If you want replies to your comments sent to you, consider logging in or creating an account.

    Important Stuff: Please try to keep posts on topic. Try to reply to other people's comments instead of starting new threads. Read other people's messages before posting your own to avoid simply duplicating what has already been said. Use a clear subject that describes what your message is about. Offtopic, Inflammatory, Inappropriate, Illegal, or Offensive comments might be moderated. (You can read everything, even moderated posts, by adjusting your threshold on the User Preferences Page) If you want replies to your comments sent to you, consider logging in or creating an account.

  3. PARENT IS KARMAWHORE TROLL, CHECK OUT HIS JOURNAL by Anonymous Coward · · Score: -1, Troll
  4. i am funny. by Anonymous Coward · · Score: -1, Troll

    ha ha ha windows sucks because bill gates is a nerd and he makes lots of money so windows sucks because everybody uses them and only stuff that nobody uses is good cuz everything mainstream sucks because everyone in the world is stupid but ME.

    get a fucking life you worthless fucking fags and stop living in your parents basement. you fucking assfuckers shouldn't be allowed to fucking breed, although since you're all assraping fags anyway you won't because a woman wouldn't go within 50 feet of you and your needle dicks.

  5. Looking at... by oGMo · · Score: 0, Troll

    Wait, looking back at Windows what?

    ;-)

    --

    Don't think of it as a flame---it's more like an argument that does 3d6 fire damage

  6. YUO SUBSCRIBER TROLL = YUO TEH FAGG0RZ!!!! by Anonymous Coward · · Score: -1, Troll

    What kind of WORTHLESS FAGGOT pays money to this shit website just to troll?

  7. My guess. by FreeLinux · · Score: 0, Troll

    You are assuming that such a worm will be like the countless outlook varieties. Obviously this will not be too effective against Linux. However, there are other means for worms to propogate such as the slammer worm. There are also numerous services that are fairly common across all Linux variants.

    My guess is that if such a worm were to come about, it would likely spread through a hole in sendmail. Another, though less likely, possibility is Apache with special emphasis on PHP.

    1. Re:My guess. by FreeLinux · · Score: 0, Troll

      Ok, bad examples. But, the fact remains that all it would take is a remote exploit in a commonly used daemon. syslogd, klogd, gpm, crond, cupsd, sshd, xinetd all run as root on most Linux systems. A remote exploit in any of these modules would allow the automated propogation of a malicious payload (worm) from one Linux system to another. All it needs is root.

  8. Re:Slashdottism by spongman · · Score: 0, Troll

    You did enable the built-in firewall before connecting your machine to the internet, didn't you? You do remember that Microsoft has been recommending everyone do this, don't you?

  9. Re:Slashdottism by uberpeter · · Score: 2, Troll

    "Windows "out of the box" is as wide open as the goatse.cx guy."

    Yes, a new .sig!

  10. Re:Looking Back At Windows Security In 2003 by t0ny · · Score: -1, Troll

    Ya, I mean, look at all these! What a frickin' insecure P.O.S. it is! Oh wait, thats not Windows...

    --

    Manipulate the moderator system! Mod someone as "overrated" today.

  11. Re:Does anyone know... by t0ny · · Score: -1, Troll
    Ya, SecurityTracker.com.

    Here is Windows XP

    Here is Linux

    As you can see, WinXP has far less problems than Linux. Its just that Linux users want the sizzle, not the steak, so they just keep sizzling about how secure their OS is. Instead of bragging about how secure they are compared to MS, they need to start tightening up their code. But I suppose that isnt as much fun as creating yet another web browser.

    --

    Manipulate the moderator system! Mod someone as "overrated" today.

  12. Re:Does anyone know... by t0ny · · Score: 0, Troll
    except the poster wanted to know about problems in December. To which I replied that Linux had more security problems in December than WinXP did, which is true, and is moreover not limited to the distrobution.

    December totals- Linux (50), Windows (41). Linux wins the unsecurity bowl by nine discovered flaws.

    So, as usual, I get modded as a troll for posting both the answer to the question that was asked, and bluntly stating facts which run counter to what people around here desperately need to hear.

    Im sorry that Linux isnt as secure as you guys think it is. But I have no control over that. I just call it like I see it. If the marketplace, the vast majority of MIS departments, and the majority of the consumers in the world are trying to tell you something, who's fault is it when you dont listen? They can all tell you guys that Windows isnt anywhere near as bad as you make it out to be. Sorry, but its true; you are insecure about your OS being unsecure.

    --

    Manipulate the moderator system! Mod someone as "overrated" today.