Linux Getting Harder To Crack
AlanS2002 points out today's article from Iain Thomson on vnu.net, which says that "Linux systems are getting tougher for hackers to crack, security experts have reported today," summarizing "A study conducted by the Honeynet Project has found that it takes about 3 months before a unpatched Linux machine will be owned, compared with about 72 hours in the past. According to a report on the study default installations are now more secure with less services enabled by default, added to this is newer versions of software such as OpenSSH being more secure. Interestingly Solaris 8 and 9 did not fare so well."
Windows is easier to crack than Linux.
Our plan is working -- GET THE FACTS!
Ahem, journalistic professionals, it should read, "...Solaris did not _fare_ so well."
What about Apple's OS/X ?
:-)
No know exploits. Uncrackable.
Isn't it about time to just buy a mac ??
Last time we checked, SP2 was a patch. I'd like to see this unpatched patched machine of which you speak.
I hope you die in a horrific accident with your parents watching.
Fucking typo accepted as spelling... it's not right.
People attempt to crack Linux less, because everyone - especially those of us in security - knows that Linux isn't used anywhere important (for obvious reasons). If you fingerprint your target as Linux - you've probably hit some experimental workstation that doesn't have anything mission critical on it.
I don't see how using letters combined with numbers counts as a typo. Typos are usually unintentional, u n00b.
Yes, tell the millions of sports fans that. You know, the ones who drive East German Trebants because the stadium owners only allow Trebant owners to attend sports events.
I'd rather give up the superbowl and drive my Ferrari, thank you. Besides, sooner or later, all the Trebant owners will die when their engine block explodes, and the stadium owners will be forced to accept me as a customer...
Check out this hot pic of Ashley Olsen, here
"How do you think your traffic gets from point A to point B on the net, though? Routers."
Don't be obtuse - in that sense, EVERY crack (that wasn't entirely local) has been through a router - which would mean Cisco (and Nortel and Foundry, et al) should be banned from the Net...
Most home PCs do NOT use local routers (unless you count a DSL modem as a router - which technically I suppose it is, but that's irrelevant here, too.)
Most home users who DO use a cheapo router these days get not only NAT, but usually a stateful inspection firewall, and automatic detection and prevention of numerous DoS attacks. I was amazed when I read the list of features on a $25 Belkin 4-port switch/cable/DSL router I installed for a client a couple months back.
Makes me wonder why Cisco charges thousands for a box which is the equivalent of a 486 PC using a command line interface when you can buy a $25 box with a browser interface that has everything but custom ASICs in it...
Richard Steven Hack - This sig is TOO GODDAMN SHORT TO DO ANYTHING USEFUL WITH! MORONS!
Join the Linus Force to better the Linux Dream!!! Work free, get lots of kudos, and be with the mighty spirit. Don't worry others will benefit financially from your efforts, even if you do. Don't let the Dream down!!!
That doesn't address the problem of 0 day exploits. Further I know people who have done a fresh install of Windoze XP and connected to the internet to get all the patches available from WindowsUpdate only to be infected within 5 seconds of connecting.
Not all conservatives are stupid,
but it is true that most stupid people are conservative.
- Hume
Ok as far as email goes there are a bucket-load of worms that can infect unpatched version of OE and Windows XP. There are two worms (AFAIK) for Linux.
Not all conservatives are stupid,
but it is true that most stupid people are conservative.
- Hume
So, is this a good reason to use Windoze or something? What's your point? Most of us here are running "random" machines and would rather not be owned before we can update our way out of harm's way. Even if you were right in your reasoning, the result is still in favor of using Linux over the alternatives, Windoze and Solaris.
Do you have a better method to determine system performance than the one used? All your theorizing is so much BS when actual computers are put onto the web in normal configurations. Put it up.
If anything, the Windoze boxes had it easy. I doubt they configured the thing to surf with IE or read email with OE, which are both filled with holes. Surfing with Konqueror/Mozilla/Dillo/Galeon/whatever is a world safer as is reading your email with Evolution/Kmail/MozillaMail/Balsa/mutt/whatever. We can be sure the results would be worse for Windoze if all the machines were set to get mail every 5 minutes. Many would not survive the first shot.
Friends don't help friends install M$ junk.
Either it's not that tight, or you were using a bad broswer that allows software (viruses) to install itself. Bad boy. It's a matter of common sense now. www.getfirefox.com
Follow me
Re: Security is a state. Securing is a process.
Wrong again! Secure is a state; Securing is the activity of improving security and security is the perpetuation of a secure state.
Re: If you really think that it is impossible for security to happen automatically, ask your self exactly what is it that a security professional can do that it is theoretically impossible to automate.
"Theoretically impossible to automate" is far stronger a constraint than is necessary to justify human involvement. These aspects of security which are extraordinarily difficult to automate relate to the following security tasks - for example: