EDS: Linux is Insecure, Unscalable

daria42 writes "Large enterprises should not use Linux because it is not secure enough, has scalability problems and could fork into many different flavours, according to the Agility Alliance, which includes IT heavyweights EDS, Oracle, Cisco, Microsoft, Sun, Dell and EMC."

What a bunch...

[vinsci]

... of losers to Linux. :-)

Re:What a bunch...

[Rei]

The thing is... they act like forks are bad things. Yes, projects can die from fork-deaths; on the other hand, forks can breathe new life into projects. Of course, they neglect how much work is involved in successfully forking a process. I don't expect to see the Linux kernel forked any time soon ;)

Re:What a bunch...

[blane.bramble]

Actually the kernel is forked all the time - most of the non x86 architectures start life as forks and eventually make their way back into the kernel.org kernel. Each new version is also a fork, which is why you can still get 2.0, 2.2, 2.4 as well as 2.6 - forks are part of the development model for the kernel, and are also part of many closed-source development models. Unless, of course, you completely stop all work on an existing product to produce a new version.

Re:What a bunch...

[bonch]

Forks ARE bad things. The mantra of "choice" isn't applicable to every situation. Standardizing on a platform is difficult enough in the Linux world. Forking things whenever one of the devs feels wronged (usually how these things get started) just increases the confusion and non-interoperability between multiple platforms. It's one more to support and worry about.

Desktop Linux has, for the most part, stagnated because KDE and GNOME won't merge into one mega-standard. Instead, we must continue to install both entire desktop environments just to comfortably run each other's apps. It's absolutely ridiculous the way the wheel gets reinvented several times over. If you're running GNOME, a KDE app, Mozilla Firefox, and OpenOffice, you've got at least four major libraries now sitting in your memory, all doing the same things but with different code, implementing their own GUI widgets. You're never going to have desktop standards that way.

Re:What a bunch...

[chris_mahan]

I have to agree. Everybody's little change is considered a fork. A real fork is when there's bad blood or differences in strategy between two groups, and one decides to 'rename' their project to be 'uberKool'.

I personally think that forks are what makes FOSS nimble and trim.

I can understand how those companies would not want that (my company is doing a project with EDS-- I won't comment!!!) since they live on bloat.

I think the corporate motto of software development is "Write once, sell everywhere." And forks get in the way of that Almighty Directive.

I say let them rot.

Re:What a bunch...

[Master+of+Transhuman]

"I was just illustrating that having parallel platforms stagnates progress."

Uuhh, like Windows 9x and Windows NT?

Bullshit when it applies to Linux. Having two highly competitive desktop platforms like GNOME and KDE results in both getting better faster.

And it's nonsense to say that Linux programs don't usually use the same layout and menus. There's no significant difference between Windows and Linux in that regard. Some authors don't follow the standards, but most do. Certainly all the major applications do. And nit-picking one or two menu entries on some specific Linux program (which is no doubt your next tack) doesn't change that fact.

Anybody switching from the Windows 2000 GUI to the XP GUI is going to have MAJOR problems with figuring out where everything is on the Start menu. Instead of having things in a clearly defined place, you have to read an entire panel of SENTENCES to figure out where what you want to do is located. Which is why MS allowed you to switch back to "classic view".

Anybody who says Windows is easier to use than Linux is simply wrong.

Re:What a bunch...

[NanoGator]

"That's true, but it's nowhere near how bad it is in Linux. If your only standard for comparison is the way Windows looks, desktop Linux is never going to improve. And regardless, the vast majority of Windows apps DO look the same and use native widgets, have buttons in the same place, have the same menu items, use the same keyboard shortcuts, and can copy-paste damn near anything between each other. The Linux offerings don't come close, because they won't standardize."

Just to add to this point: Windows users such as myself are spoiled because of this. I've tried to adopt Linux a couple of times, but these very problems that were mentioned made me throw my arms up in defeat. It really is hard to switch to Linux when a.) It's an uphill battle all the way and b.) Windows has actually achieved a decent computing experience. (If you're shaking your head, make a BSOD comment and watch how quickly you're corrected.)

Feel free to dismiss me as a newb or a dumb-shit or whatever. I have no problem with that. I didn't put hours and hours into Linux. Niether will a lot of 'desktop' people that Linux is going after. This is why I'm so critical of having to edit .CONF files etc.

I do want to mention something, though: Knoppix is headed in the right direction. I used it about a year ago and was stunned that a.) it auto-detected everything just fine, b.) I had no problem finding what I needed, c.) It more or less behaved like Windows. I wish I could be more specific, but it was the first time that I ever used Linux and didn't feel like I was lugging around a ball and chain. So I don't want to sound like Linux will never improve, obviously it is. I just hope one day a little more thought in the direction of "Microsoft's already trained 10s of millions of peoples how to use a computer..." happens.

Re:What a bunch...

[stevesliva]

which is why you can still get 2.0, 2.2, 2.4 as well as 2.6

Which is nice, because you're not forced to die or upgrade when some beancounter decides it's time to stop supporting security patches for NT or IOS or Solaris 2 or whatever.

Here where I work, we're moving from one set of tools and database to something newer. The question arose, "But how will we look at old data 15 years from now?" (A valid concern in patent defense.) The answer, "The tools have been ported to Linux, right?" Done and done.

Interesting crowd

[oneandoneis2]

No chance of any anti-linux bias from any of that lot, eh? :)

We are the risk takers of our time

[suso]

In relation to the spirit of this article.

In an industry where companies distort facts, thwart community efforts, it can be hard to know who to trust and what to believe. I think it is times like these when we the Open Source/Linux community can compare itself most closely with other changes and booms in society's history.

Think of all the doomsayers who like to say "The sky is falling" around times of economic uncertainty and social change. In the end, the ones who take the risks during those times, usually come out ahead.

I consider the Open Source community to be the "risk takers" per say of our time. I don't think that we'll end up on the wrong side of the fence when all is said and done. But if we do, so be it! At least we tried to make something better of the world. Something that gives rather than takes.

I don't think we should spend so much time reading articles like this that give us the attitude that the sky is falling. We should spend more time celebrating Linux and Open Source and leading the way to what will come next. We need to be leaders not Doomsayers.

If you want to read a good article on why open source is the right way to do things, read this Peruvian Congressman's letter to the manager of Microsoft in Peru. Really great read.

Re:We are the risk takers of our time

[xdroop]

Think of all the doomsayers who like to say "The sky is falling" around times of economic uncertainty and social change. In the end, the ones who take the risks during those times, usually come out ahead.

Sorry sir, your logic does not follow. Just because the winners were risk-takers, it does not necessarilly follow that risk-takers are winners. The risk-takers are winners because they took the right risk at the (right) time. That said, I do not think Linux is a "risk" these days.

"Heavyweights."

[rah1420]

Interesting how all of them just might have a teensy > agenda of their own which is threatened by Linux in its ascendancy, huh?

Yawn.

Slashdot says...

[FooAtWFU]

"Nothing for you to see here. Please move along."

I think this is a fair summary. But really, Microsoft, I see you listed. Is Windows more secure? Is Windows more scalable? I mean, they know as well as we do about the possibilities of it splitting into multiple varieties, but aside from that...

OS vs. language

[twd]

I would not consider someone who would refer to Linux as a language, as Mr. Rasmussen did, to be terribly knowledgeable about this things.

Re:OS vs. language

[14erCleaner]

It gets better: here are some other things he said:

A large enterprise needs to be sure because it relates to securifying the environment.

Also, we are somewhat cautious about what happened with Unix - it splintered into eight applications -- until McNealy finally announced he won the battle and had the one surviving Unix out there.

Clearly this guy was promoted to his level of incompetence long ago, and never bothered to keep up with the industry in which his company supposedly is a leader.

hard to believe

[yagu]

The article, or at least the people putting forth their thesis (I call bullhockey, it's really more of an agenda) do much to discredit themselves with claims such as:

..., Also, we are somewhat cautious about what happened with Unix - it splintered into eight applications ,...

I don't know exactly what they mean by "splintered", but working in the Unix field now for twenty-plus years, I never experienced:

• ANYTHING I could describe as a splinter.... at worst I would describe my experiences as nuanced differences among the various flavors of unix.
• EIGHT(?!?) applications! First and foremost, unix is NOT, repeat-after-me, NOT an application.... and anyone who describes anything about unix in those terms reveals more about their depth (lack of) in understanding of OS technology than insight therein.

I don't find or see anything enlightening or new in the article, and walk away shaking my head when these kinds of observations get any press at all.

Hahaha!

[RenHoek]

Unlike Windows wich is secure (XP SP1 box is compromised in 18 min when online), scalable (try running ANY version of windows on more then 2 processors), and has never been forked into multiple flavors (NT, 95/98, ME, XP Home/Pro/Corp).

Yawn..

Who Comes Up with These Names?

[frank_adrian314159]

... Agility Alliance, which includes IT heavyweights EDS, Oracle, Cisco, Microsoft, Sun, Dell and EMC.

Agile for dinosaurs, I guess.

EDS, Oracle, Cisco, Microsoft, and EMC are not names I associate with agility. It would be like IBM, Exxon-Mobile, GE, and Wal-Mart getting together and calling themselves the "Lightweight League of Business".

doubts

[austad]

I doubt all of the members actually agree on this. Oracle has been pimping their stuff on Linux pretty hard lately, and Linux is what they actually do their development on now.

Cisco has been using linux in several of their products, including the cache engine card that fits in 2600/3600 routers, the WLSE, the Airespace stuff they just bought, and a bunch of other stuff.

Slashdot?

[bonch]

No chance of the reverse from this crowd?

Each claim should be evaluated regardless of messenger. If the claims don't make sense, there's no reason to immediately dismiss them because you know you're right. Instead, address them. Yes, there are cases where Linux is insecure and unscalable. There are cases where it is more secure and more scalable.

We should adopt more balanced opinions around here. Unfortunately, what will happen is that people will counter the article's reactionary opinion with an opposite reactionary opinion.

Re:Slashdot?

[rpdillon]

Each claim should be evaluated regardless of messenger.

I completely agree. But that doesn't mean I'm going to ignore who wrote the message. Do you ignore who the author of the book was? Or who wrote the article? I don't lend everyone the same credence. It is very different for the criminal to claim he is innocent than for his supposed victim to claim he is innocent. The author makes all the difference.

In this case, it is merely amusing to note who the author is, because clearly, the claims are absurd. Linux has been shown to be capable of high security (an agency called the NSA helped us in this area, IIRC). It has also been shown multiple times that it is very scalable (Google, anyone?). This has nothing to do with my opinion of Linux, it merely has to do with basic standards of credibility. It is akin to standing in front of a Rolls Royce and claiming that it is a low quality, inferior car. This is amusing, but it is even more amusing when you find out it's a Chevy salesman making the speech.

Unfortunately, what will happen is that people will counter the article's reactionary opinion with an opposite reactionary opinion.

First, I'm not sure how the article is expressing a reactionary opinion; I don't know of anything it was "reacting" to. It seems more like a baseless attack to me. Secondly, just because someone disagrees with an article does not automatically render their arguments invalid or "reactionary", as you suggest.

Lastly, as a bit of concession, I do think balanced opinions are good. But that doesn't mean we should dignify this kind of propoganda. If someone (anyone, even the EDS) comes along with something that is measured, qualified and well-researched, then we can address it in turn. But this does not deserve serious attention. This is a classic marketing move - "The OTHER product is insecure, it doesn't work on a large scale, it is more expensive, and, oh look! We have an alternative right here!" Take another look at what this guy is saying and tell me honestly that there is anything remotely concrete in what he is saying.

"From a corporate perspective, we are not confident where Linux is right now today. A large enterprise needs to be sure because it relates to securifying [sic] the environment. We see some of the same things occurring that did to Unix -- it could splinter into many different types of languages. We are quite cautious about Linux and its deployment," said Rasmussen.

"We are concerned about security on an open standard environment like that. We are also concerned about some of the scalability issues that we are seeing on our clients on a global basis. Also, we are somewhat cautious about what happened with Unix - it splintered into eight applications -- until McNealy (Scott McNealy, chief executive of Sun) finally announced he won the battle and had the one surviving Unix out there. We think Linux has the possibility of going the same route," said Rasmussen.

"Quite honestly, in the notion of costs, as we look at what we are structuring with our alliance partners, we are not seeing a compelling cost advantage that would lend us towards Linux -- given the other things I have mentioned," said Rasmussen.

Jim Hassell, managing director of Sun Microsystems Australia, argued that Linux was no loss to the Agility Alliance because it could use Solaris 10 instead of Linux rival Red Hat.

"If you test Red Hat against Solaris 10 against whatever else... we would say that Solaris 10 beats it hands down on functionality and everything else," said Hassell.

A Real Contender

[blueZhift]

This is just more proof that Linux has arrived on the scene as a real contender in the IT world. I remember when I first heard of Linux, there were literally daily changes being released for the kernel and things were seemingly in a constant state of flux. At the time I was using OS/2, but I was curious enough to keep an eye on Linux and where it was going. Years later, when it really mattered, the choice was simple, Linux. Why? I work in an environment where I'm an army of one and costs and security are very important. Windows just wasn't the best choice for what I needed to build and the budget I had. I guess I wasn't the only one who thought that way! So called studies that refute what frontline IT people see everyday in the field just prove the desperation of those threatened by Linux and the overall free open source movement. If they're smart, eventually they'll learn to live with and perhaps profit from it, but right now they seem more interested in stopping it through FUD and legislation.

Tell that to Google...

[MikeCapone]

..that Linux is unscalable.

Re:Hmmmm..

[rtaylor]

Google is small, they always get hacked and their search engine doesn't scale.

Google doesn't really use any of the scalability features in Linux. In fact, they seem to go out of their way to avoid them and instead rely almost entirely on in-house technology for scaling.

It's a bit like saying that florescent lights are scalable because you can put thousands of individual lights within a building, or that IBM laptops are scalable because you can purchase them in units of 1000 running MS Windows.

I'll bite.

[jd]

• Insecure: Linux has three role-based security mechanisms and mandatory access controls (SE-Linux is just the one included), three ACL mechanisms (Trustees, POSIX ACLs and SGI's XFS security mechanisms), an EAL4 rating with an EAL5 possibly underway, USB or dongle system locking, support for cryptographic and "trusted" hardware, support for IPSec, a very impressive packet filtering system (layers 2, 3 and 7), capabilities and that's just the kernel. If you want to include the rest of the system, you've stack guards, SSL/TLS, Kerberos 5, rootkit detectors, binary modification detectors, TCP wrappers, bayesian intrusion detection systems, root jails, virtualization (which allows you to compartmentalize, and therefore can be used for security), MD5 passwords for the shadow suite, one-time password systems, public key encryption and a host of validation & security auditing tools (TARA, SARA, NMap, Nessus, BASS, etc)
  
• Unscalable: The Linux kernel supports "pure" SMP systems that are respectably large. For larger system, bproc and OpenMOSIX permit scaling up to about 65534 nodes with each node taking perhaps 64 processors. To my way of thinking, that's pretty damn scalable. Actually, as bproc and OpenMOSIX use different migration systems, it may be possible to build a grid of grids, where you've a Beowulf cluster of MOSIX clusters of 64-way SMP nodes. This gives you a theoretical capacity of 274,861,129,984 processors. Microsoft is planning to add clustering, in the future. Let me know when it compares. Linux also supports NUMA, Distributed Shared Memory, Active Ports/Active Messages, gigabit MPI, high-speed network filesystems (Lustre!) abd other key components for scaling. See "first few entries in top 500 supercomputers" for further information.
  
• Prone to forking: There are many Linux distributions, tailored to people's needs, but only one real "kernel". There are many Windows kernels (the 3.x tree, the 9x tree, the NT tree, the 200x tree, Windows CE, Longhorn) but the distributions are basically the same components. Who is creating more of a fork - the tailor who makes clothes that fit from standard material, or the tailor who uses the closest material to hand, regardless of what it is?
  

The claims can be easily disproven. Unfortunately, while companies enjoy First Amendment protections, they are virtually immune to slander/libel. A pity, as there'd otherwise likely be enough money to be made from such a suit to keep every Linux user and developer fed and housed for the rest of their lives.

Fear Uncertainty and Doubt cast back on MS et al

[hoggoth]

These entrenched companies, led by Microsoft, have a particular blind spot when it comes to recognizing the damage they are doing to their own reputations and public image by continually and obviously lying to the public.

Microsoft has already damaged their reputation to the point that MOST IT professionals understand that anything MS says to them is most likely a lie. They may buy MS products for other compelling reasons, but always with the understanding that MS is a sneaky company.

Aren't they apprehensive, even a little, of having NO goodwill among their customers? If the technology competitive landscape changes (eg: the power of the monopoly weakens) their customers will be eager to jump ship.