Slashdot Mirror

← Back to Stories (view on slashdot.org)

Microsoft Claims Firms 'Hitting a Wall' With Linux

Posted by ScuttleMonkey on from the self-serving-studies-and-other-misnomers dept.

maxifez writes writes to tell us that Microsoft has released yet another independent study downplaying the viability of Linux at the enterprise level. The study claims that Windows is "more consistent, predictable, and easier to manage than Linux." From the article: "The study, commissioned by the software giant from Security Innovation, a provider of application security services, claimed that Linux administrators took 68 per cent longer to implement new business requirements than their Windows counterparts." Vnunet.com has also provided a PDF of the original report.

13 of 717 comments (clear)

  1. forgot the scare quotes by ChipMonk · · Score: 4, Insightful

    Yet another "independent" study.

    1. Re:forgot the scare quotes by SatanicPuppy · · Score: 5, Insightful

      I think the flood of microsoft biased studies in the last year go a long way toward bolstering linux's claims. If they weren't to some extent true, microsoft wouldn't be trying so hard to discredit them.

      I don't know why they bother honestly. My bosses bosses boss recently informed me that we use Microsoft almost exclusively. I just nodded and smiled, because it was easier to do that than explain that even our DESKTOPS are mostly Mac, and our infrastructure is 90% unix (Solaris, linux, bsd). The only people who really read those studies don't know what the hell they're talking about anyway.

      I don't give a damn what microsoft's studies say. I've been using unix, linux, and windows for years, and unix and linux have ALWAYS been more reliable. I've got a 250,000 dollar machine hooked up to a brand new Dell box running 2003 that goes down as often as a nickel whore, and I am SICK of hearing from Microsoft that this is just my imagination!

      --
      ad logicam Claiming a proposition is false because it was presented as the conclusion of a fallacious argument.
    2. Re:forgot the scare quotes by st1d · · Score: 4, Insightful

      Possibly, as they generally are put together by Linux fans, whereas MS seems destined to buy it's positive studies. From another standpoint, it's one thing to have "educated, well known, and well respected" fans produce a study, and a whole other thing to have to pay good money to get anybody to put their reputation on the line to back your product. As well, Linux studies tend to present considerable supplemental data for others to repeat their studies on their own, whereas MS's studies tend to do little more than announce a vague result the entire IT world is supposed to accept. Part of this is simply because the paid-for study house requires payment for detailed explainations of methods and results, but that's not very convincing (reeks of mail-order scams, to me, at least -- "Send in your money, and we'll make you successful!").

      Part of the problem for MS, especially regarding studies, is that they are selling a "one size fits all" solution, whereas Linux allows numerous variations to best achieve your goals. MS is facing a tough battle, trying to convience everyone that they are the best solution for all situations (read as: easy to use for uncaring sheep), yet technically appealing to even the most distinct niche users.

      As Mike Warnke once said as the moral of a long story: "If you try to please everyone, you're going to lose your ass." (How's that for an obscure reference?)

      --
      Microsoft has just released their much anticipated hands-free cordless mouse. Warning, it may hurt a little at first.
  2. 68% of what? by aborchers · · Score: 4, Insightful

    "Linux administrators took 68 per cent longer to implement new business requirements than their Windows counterparts"

    What the study failed to mention is that 86 per cent of the time to implement was spent convincing the executives and attorneys that using Linux was worth pursuing.

    --
    Trouble making decisions? Just flip for it.
  3. Warning: possible incongruity detected! by Trelane · · Score: 5, Insightful
    "We invite other vendors, including Novell, IBM and Red Hat, to repeat their own independent analysis based on Security Innovation's methodology."
    Umm, is not "their own independent analysis" rather oxymoronic?
    --

    --
    Given enough personal experience, all stereotypes are shallow.
  4. Re:Nice to know by swillden · · Score: 5, Insightful

    On the Linux side, I simply rsync software to all our of workstations. I can even upgrade software people are using right at that moment (like rsyncing the newest thunderbird to /usr/local/thunderbird-1.0.7 while they use the thunderbird in /usr/local/thunderbird-1.0.6, and then moving the /usr/local/bin/thunderbird symbolic link to point to the new version). On the windows side, I wander around bugging people to take an early lunch or whatever while I install/upgrade software on their machine.

    There are plenty of ways in which Unix-style systems are easier to administer than Windows boxes, but this is not one of them. Windows actually has quite decent remote administration tools these days, including a fairly nice infrastructure for performing remote installations. Assuming you add some third party components (or are installing to a server with Terminal Services), ad-hoc remote access is also quite good.

    I'm a big fan of Linux (I have seven computers at home; six run Linux, one runs OS X, no Windows, not even a dual-boot), and I'd probably drive a bus before I'd work as a full-time Windows sysadmin, but even I can't let this sort of FUD pass.

    I suggest that you learn Windows first, then rant about it. You'll still have plenty to rant about, but you won't look like an idiot doing it.

    --
    Note to ACs: I usually delete AC replies without reading them. If you want to talk to me, log in.
  5. Claims of security by porkThreeWays · · Score: 4, Insightful

    In the PDF speaking about RHEL 4 including selinux compared to RHEL 3 which doesn't have selinux...

    "The data indicated does not seem to indicate drastic security vulnerability improvement for RHEL 4"

    I usually don't get pissed off about these Microsoft studies, but this is more than FUD. It's a lie. They compared the security patches for RHEL 3 and 4 over a 2 1/2 month perdiod. RHEL 4 had more. They indicate that selinux did not make RHEL 4 more secure. The point of selinux isn't to lessen the number of security advisories. IT'S ANOTHER FUCKING LAYER OF SECURITY. It's akin to a firewall or antivirus. It's exactly like saying "the month after microsoft released Windows defender, 38 new viruses were detected in the wild. The month before only 30 new viruses were found in the wild. Windows defender seems to have little effect on spyware and viruses." There's no connection. selinux would make it so a vulnerable piece of software would have a harder time being exploited and an even harder time getting total system control. A hole is a hole. Whether or not it is easily exploited or not doesn't matter. It needs to be patched regardless. If sendmail has a buffer overflow that selinux is able to mitigate, sendmail still needs to be patched. Whether or not they will be able to successfully exploit it is another question. It doesn't stop the fact that sendmail has a buff overflow.

    You'd think a "professional" security agency would have more sense than that, but aparently not.

    k thx get the lies campaign.

    --
    If an officer ever threatens to taze you, say you have a pacemaker.
  6. Re:Well by Golias · · Score: 4, Insightful

    They are not talking about the time to deploy the server itself.

    From the Summary (because who bothers to RTFA anymore?):

    "...claimed that Linux administrators took 68 per cent longer to implement new business requirements than their Windows counterparts..."

    That much is probably true. Implementing some new process on a Linux box probably does take a bit longer. But here's the thing: Once it's done, it's done.

    I've seen enough gawd-awful in-house software and scripts in Microsoft shops to know better than to be impressed by how much "faster" it is to adapt their shit. If you count all the down-time and set-backs which can happen after implementation, you probably ultimtely save a lot of time by going with a Linux-based enterprise.

    But then, I'm not some kick-ass consulting firm which a big astroturfing... er... I mean independent study commission to put in the bank.

    --

    Information wants to be anthropomorphized.

  7. Re:Well by BrookHarty · · Score: 4, Insightful

    Microsoft is generally easier and quicker to deploy, but then

    To be fair, you normally choose the OS and Hardware for the job. Microsoft likes to point out OEM boxes that are hard to install linux on, but then, thats like trying to put XP on all those old beige boxes and saying Microsoft sux0rs because of bad driver support.

    SSDD.

  8. I worked faster when I was ignorant by Just+Some+Guy · · Score: 4, Insightful
    When I was a novice, I could roll out a new production system with all the bells and whistles in a few days. Now that I'm more experienced, it often takes weeks or months.

    Of course, the new systems are actually usable, as secure as I can make them, better integrated with the rest of the business environment, and much easier to maintain and expand.

    It's easy to do things quickly when you get to skip the planning stage. Ask your stereotypical long-bearded Unix guy to implement web services and you'll be lucky to see the first draft during the same fiscal year - and no amount of pressure will make it happen any faster. Of course, it'll work correctly from the first day and will exceed the total workload of the quick-hack system within the first month, but that doesn't look pretty on this year's financials so a lot of managers aren't interested.

    --
    Dewey, what part of this looks like authorities should be involved?
  9. Re:Nice to know by swillden · · Score: 4, Insightful

    You just copy the files, move a link (guaranteed to be an atomic operation), and any new instances of the program are running the new code.

    It's simpler than that, actually, if you don't mind the program being inaccessible for a few milliseconds. You just 'mv' the new file in place of the old one. New instances are running new code, old instances keep running old code. I never said Linux/Unix wasn't *better*, just that Windows wasn't as bad as the other poster made it out to be.

    In Windows-land, you need to set locks, twiddle bits, edit the registery, God knows what. Sure, some "wizard" hides all this for you, but it's nothing like the simple equivalent Unix version. What happens if there's a power failure right in the middle of all this, for instance? Or if the computer runs out of RAM or disk? Yeesh. I just wouldn't trust it, no matter what the software author claims.

    Actually, if they use the MS installer toolset, the installer will roll back the changes in the event of a power failure or other installation problem.

    It's a prototypical Microsoft solution, actually. Compare them:

    • Because Windows has traditionally been usable only from the console, Microsoft had to provide a sophisticated toolset for initiating and managing remote installations.
    • There's no difference between local and remote access to a Unix system.

    • Because Windows can't replace in-use files, Microsoft provides a system that allows the installer to register changes so they get applied at the next reboot. This registry is pretty sophisticated, and can do the right thing even if the power goes out at a bad moment.
    • On Unix, you can replace an in-use file, so you do.

    • Because Windows manages most all system configuration in one large, brittle, binary pile, Microsoft's installation system provides automatic rollback support, so that installations can be atomic. Just in case, Microsoft's OSes also provide a "revert to last known good state feature".
    • On Unix, configuration info is in many small, human-readable text files, so you just tweak what you need to. If you break it, you can fix it with 'vi'.

    Of course, some of the added functionality that MS provides, like the system for centrally managing updates of many machines through a simple GUI, really is nice, so it has been implemented for Unix systems as well. But a Unix admin can get a hell of a lot done with nothing more than some shell scripts and ssh, including things that the authors of the fancy GUIs never thought to implement.

    --
    Note to ACs: I usually delete AC replies without reading them. If you want to talk to me, log in.
  10. Re:Well by Wudbaer · · Score: 4, Insightful

    But is this really so different from self-proclaimed college-drop-out "Linux gurus" who whip together sucky and insecure "solutions" in MySQL and PHP using the "powerful open Enterprise OSS LAMP-stack" ? You can write good as well as bad code both on Linux and Windows, and there are more than enough examples for both on both platforms.

  11. Comparing apples and pears ! by udippel · · Score: 4, Insightful

    Did you guys *read* the paper ? I did as long as I didn't have to vomit.

    On Windows they applied some normal patches; while the 'milestones' on Linux included real heavy stuff: upgrading glibc, upgrading mysql. Plus patches.
    When I upgrade mysql and glibc I upgrade from W2K to Server2003; so to say.
    Serious upgrading and normal patches cannot be compared.

    So, to me, it is and remains FUD.
    On purpose they would not use a period including an update from W2K to 2003; or XP. Even less one when you migrate Exchange from 5.5 to 2000 or similar.

    They feel the pain and now spend some big money to some Herbert, PhD, to invent a useless situation.
    Deception.

    [ends]