Slashdot Mirror
'WannaCry Makes an Easy Case For Linux' (techrepublic.com)
An anonymous reader writes: The thing is, WannaCry isn't the first of its kind. In fact, ransomware has been exploiting Windows vulnerabilities for a while. The first known ransomware attack was called "AIDS Trojan" that infected Windows machines back in 1989. This particular ransomware attack switched the autoexec.bat file. This new file counted the amount of times a machine had been booted; when the machine reached a count of 90, all of the filenames on the C drive were encrypted. Windows, of course, isn't the only platform to have been hit by ransomware. In fact, back in 2015, the LinuxEncoder ransomware was discovered. That bit of malicious code, however, only affected servers running the Magento ecommerce solution. The important question here is this: Have their been any ransomware attacks on the Linux desktop? The answer is no. With that in mind, it's pretty easy to draw the conclusion that now would be a great time to start deploying Linux on the desktop. I can already hear the tired arguments. The primary issue: software. I will counter that argument by saying this: Most software has migrated to either Software as a Service (SaaS) or the cloud. The majority of work people do is via a web browser. Chrome, Firefox, Edge, Safari; with few exceptions, SaaS doesn't care. With that in mind, why would you want your employees and staff using a vulnerable system? [...] Imagine, if you will, you have deployed Linux as a desktop OS for your company and those machines work like champs from the day you set them up to the day the hardware finally fails. Doesn't that sound like a win your company could use? If your employees work primarily with SaaS (through web browsers), then there is zero reason keeping you from making the switch to a more reliable, secure platform.
Virus writers will target the largest market portion. If that's Windows, they'll write viruses for Windows. If it's Mac, they'll write viruses for Mac. If it's Linux, they will start writing viruses for Linux. Just because more vulnerabilities in Windows are known, does not mean there are less total in Linux. And short of taking away admin/sudo access from users completely, malware can always social engineer it's way into administrative privileges during an installer or something similar.
Every single time any sort of media coverage comes up about a non-event (didnt affect real users, only affected organisations which delayed the installation of a critical update), fanboys leap on the opertunity to say how much better linux is.
Linux has its fair share of these, and runs on its fair share of critical infrastructure, and is run by its own fair share of idiots, but it is never really media worthy, because it isnt Windows and it isnt something the general public will relate to.
Give it a rest...
portfolio
I heard 2017 is the year for desktop Linux. Any day now.
This new file counted the amount of times a machine had been booted; when the machine reached a count of 90, all of the filenames on the C drive were encrypted.
That should only take a few minutes, right?
Windows is targeted because it's popular. If we all switched to Linux as our primary workstation at home and work, it would be just as targeted. It won't be until then when we discover just how secure (or unsecure) Linux really is.
I believe there are many benefits to Linux, but the argument to move away from one insecure platform to another platform which is probably just as insecure isn't one I find very motivating.
Let's make like a bird... and get the flock outta here.
My father runs an accounting business. His tax software is only available on Windows, and not as a service.
I work in a media company. Yes, some have Macs, but most of the software is only available for Windows, so most users must use Windows. Now the other departments could possibly use something like Linux, but then it's another system that needs to be supported (given that we still must support Windows, anyway).
I'm sorry Linux fans (of which I am one... the web servers I set up for work are Linux, and I'm typing this on Linux as my desktop right now), but there's a lot of proprietary software that many companies use that is only available on Windows. Most of it has no serious competition on Linux.
Stupid sexy Flanders.
https://en.wikipedia.org/wiki/Linux.Encoder.1
Does nobody use Google in this day and age? Or is everyone in the media moving over to Bing now?
Firewalls and security updates. The Windows server firewall is locked down by default. The Windows desktop firewall has a million ports open. Many are to localsubnet, but it's still open.
What I really want MS to do is make their firewall scoping easier to use, like icefloor: allow grouping of IP ranges as a common name, and allow scopes to use that name. They started to do that with predefined networks, but stopped for some reason.
Whatever the hell you want!
https://www.youtube.com/watch?v=9GO3mccvTCs
Sam Wheat: How long have you been here?
Subway Ghost: Since they pushed me.
Sam Wheat: Someone pushed you?
Subway Ghost: Yeah, someone pushed me.
Sam Wheat: Who?
Subway Ghost: What, you don't believe me? You think I fell? You think I jumped? Well, fuck you! It wasn't my time! I wasn't supposed to go! I'm not supposed to be here!
[the ghost kicks a cigarette machine, causing cigarette packs to fall out. He looks longingly at the cigarettes]
Subway Ghost: Oh, I'd give anything for a drag! Just one drag!
"Have their been any ransomware attacks on the Linux desktop?"
"Their"? I can't take this seriously at all now...
"Most software has migrated to either Software as a Service (SaaS) or the cloud."
I haven't heard anything so incredibly wrong for several hours. This guy has no clue. And even if it were true, that would make Linux nothing less than some kind of "dumb terminal" client... Seems to go against the whole point.
Linux is a joke. Sorry to say it, but even though I hate Microsoft and Windows, I still run it in 2017, *because there simply isn't an alternative*.
Your assuming that ransomware is the only threat and as more people switch from windows to linux expect more ransomware to be created and linux to be targeted.
Btw I use windows, never been breached and I use multi layered security and have backups stored offsite if I am.
Linux is good and a valid choice for an OS but simple security practices keep you secure not your OS.
There is only other people's computers. If you move to relying on "the cloud", all you are doing is delegating your security to someone else. Now you have two points of vulnerability: Your local Linux machine, and the "cloud" server, either of which could be infected with malware. You have not fixed the problem, and you have actually doubled your exposure.
For real. I read these submissions, and I wonder if it's just a big troll. I mean, does anyone have a real company that uses 100% cloud offerings? I mean, I get that it's theoretically possible, but it's just not practical. Because, reasons. I mean, really, does anyone actual think this?
So you are saying that, isn't that Linux is "better", but Windows is "worse", so, I should choose the lesser of two evils?
Not this again....
When are we going to start seeing "2017 - The Year of the Linux Desktop" posts again....
Maybe we can also drag out the $699 SCO fee posts again too....
Give me a break.
If disk access were managed by code that was "lower than the operating system" and the disk management made it very difficult to actually delete data without waiting a week or more, it would make writing ransomware much more difficult. Such code could live in the drive firmware and/or in an isolated/low-surface-attack portion of the kernel or in a microkernel server.
Yes, there would be a cost, in that you couldn't scrub data or recover disk space for re-use at the drop of a hat, but it would be worth it for most people.
Also, such a system could be defeated but the number of ways it can be defeated is small enough to be manageable.
Knowledge is how to play a game, intelligence is how to win, wisdom is knowing what game to play.
As someone who uses linux for work....it is FAR from the utopia it is "sold" as.
Even being "free" does not redeem the cost of using it in terms of personal time and sanity.
Linux in terms of the desktop is still many years/decades away from a usable OS...
As for Windows having issues like this, that's what happens when you're at the top; not to mention when you don't maintain something.
You could say the same for macOS, Linux, BeOS, OS2 Warp, etc.
If you use Windows, update. If you can avoid using Windows, you might be safe until it is more popular than Windows.
Is this a Jon Katz article?!?!
Linux is safe for desktop until it is only used by nerds.
The same day it will become popular to the masses, will be the day it became popular for ransomware scum.
The day of linux on the desktop is the day I will switch to openBSD!
If the goal of a Virus writer is to target the largest market portion, then they'll focus on the servers that are serving thousands, if not millions of potential marks. And the overwhelming majority of those servers are running nix in one form or anther. Fully documented source code servers which are open to the world of malicious eyes to plunder at will. Why hold a single Windows OS desktop hostage when you can hold an business hostage impacting hundreds of thousands of users?
Virus writers are targeting Windows because it's a laughably easy target to hit. It has nothing to do with market share.
I will counter that argument by saying this: Most software has migrated to either Software as a Service (SaaS) or the cloud.
What planet are you living on? This is so not the case in actual reality.
>> Have their been any ransomware attacks on the Linux desktop?
Two things:
1) Why on earth would someone take the time to develop ransomware on "desktop" Linux?
2) Anyone running a Linux desktop with a 10 year old version of their OS (like XP) is likely just as open to attack.
The two rules for success are:
1) Never tell them everything you know.
Autocad, Solidworks, Maya, 3DSMax, Mastercam, Veracut, Esprit....The list goes on and on. I know there are alternatives for some, and linux compatibility for others, but the cost of user re-training is prohibitively expensive. Many manufacturing companies are barred from cloud computing due to compliance issues, so SAS is mostly a no-go as well. When your engineers are forced to relearn and build new workflows, the risk of costly mishaps spikes on top of everything else.
People are trained to resist anything not Microsoft due to public education focusing exclusively on MS products..(Gen X, not sure how things are today) I've rolled out open-source alternatives to MS Office on a corporate fleet with an eye for closing common attack vectors, and growing IT budgets, but the cost of retraining high level users who are actively resisting the change is very very high.
When your small business needs to invest in retraining an already expensive hourly employee, Joan in accounting can sink the whole operation with a single unkind word.
You are being ripped off every second of every day, so that advertisers can help rip you off even more tomorrow.
I love Linux (and my job is supporting it!) and do want to see it take over the desktop, but this exact same thing could happen for Linux too.
Correct me if I'm wrong but if you applied all Windows updates from 2 months prior, you wouldn't get it. Right?
The business decision to delay updating can affect any OS.
You don't think the NSA has exploits that may have leaked for Linux?
Speaking of that, we should really reform that system: https://blog.mozilla.org/blog/...
Chromebooks, yes, Chromebooks...
I'm a Linux user both desktop at home and at work and used Linux for over 20 years.
If we check the CVE with the same criteria we all should run OpenBSD.
Also the statement that the majority of work people do is via a web browser is baseless for most corporate environments.
SMB Ports 445/139 (TCP) & 137/138 (UDP) protection via MS
To enable or disable SMBv1 on the SMB server, configure the following registry key:
Registry subkey: HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\LanmanServer\Parameters Registry entry: SMB1
REG_DWORD: 0 = Disabled
REG_DWORD: 1 = Enabled
Default: 1 = Enabled
To enable or disable SMBv2 on the SMB server, configure the following registry key:
Registry subkey:HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\LanmanServer\Parameters Registry entry: SMB2
REG_DWORD: 0 = Disabled
REG_DWORD: 1 = Enabled
Default: 1 = Enabled
---
To disable SMBv1 on the SMB client, run the following commands:
sc.exe config lanmanworkstation depend= bowser/mrxsmb20/nsi
sc.exe config mrxsmb10 start= disabled
To enable SMBv2 and SMBv3 on the SMB client, run the following commands:
sc.exe config lanmanworkstation depend= bowser/mrxsmb10/mrxsmb20/nsi
sc.exe config mrxsmb20 start= auto
* Per https://support.microsoft.com/en-us/help/2696547/how-to-enable-and-disable-smbv1,-smbv2,-and-smbv3-in-windows-vista,-windows-server-2008,-windows-7,-windows-server-2008-r2,-windows-8,-and-windows-server-2012/
---
With a SINGLE 'standalone' non-networked PC (no home network/LAN) just turn off Server & Workstation services. It shuts off any "handles" (port 445) this thing propogates thru + turn off NetBIOS over TCP/IP in your internet connection & uncheck/disable Client for Microsoft Networks + File and Print Sharing. Port 139 & 445 always pop up issues over time.
I covered all this 11++ yrs. ago in a security guide I wrote for users with a single system & apparently, its advice STILL STANDS THE "TEST OF TIME" ala https://www.google.com/#q=HOW+... [google.com] vs. even today's threats like this one.
* This effectively makes this threat a non-issue + saves you CPU cycles/RAM & other I/O wasted on services you don't NEED as a single PC user only... & you don't. They're just wastes with a single PC really. Many services are (covered in guide above based on CIS Tool guidance (who took fixes to their ware from "yours truly" too, no less)).
APK
P.S.=> Of course, don't be STUPID & click on attachments in bogus malicious emails this thing propogates thru as well (Chrome/Opera/Webkit users - BEWARE of the ShellControlFile issue that just popped up (.scf file) noted here-> http://www.theregister.co.uk/2... [theregister.co.uk] ) & DO PATCH per / ... apk
There's a reason for that, market share. Why release something that targets a several hundred thousand at best compared to releasing something that can target hundreds of millions? You can bet your bottom dollar that if Linux had the same desktop market share as Windows that it too would be in the sights of the ransomware brigade and Linux distributions have packages in that have vulnerabilities which could allow a similar attack. It was only last year a CUPS issue that allowed escalated privileges was fixed and CUPS is used in most distros.
I only please one person per day. Today is not your day. Tomorrow isn't looking good either. - Scott Adams
now would be a great time to start deploying Linux on the desktop.
It is also a great time to start coding a Linux ransomware...be prepared! You can be the first!
...for the simple-minded.
"Most software has migrated to either Software as a Service (SaaS) or the cloud. The majority of work people do is via a web browser."
Yeah. OK. Riiiiight!
Classic case of a person who thinks they already know the right answer, then every situation they examine to see how it confirms what they already think.
If one is doing all their work in the cloud, then more likely than not, that's where the files are as well...so not local and not subject to a local Ransomware attack. Wouldn't matter what the local OS is.
Give a hand, not a hand-out.
Only LUDDITES use LUDDITE Windows! Modern app appers use Appdows 10 S, the appiest apperating app!
Apps!
Putting aside older Windows XP machines which did not have the fix (and for which users who care about security shouldn't be running since there is no longer patch support for the platform) - Microsoft had rolled out the fix for their other Windows platforms well before WannaCry came out. What difference does the OS make if the user isn't going to be diligent in keeping their OS updated with security patches?
Patches have to created and people need to review and apply. Synology had this same issue a while back and its a variant of linux.
Synolocker and similar; that targeted Linux boxes that uses OpenSSL and so on....
"But Open SSL isn't Linux"
By the same token, SMB isn't Windows either.
a case for updating your operating systems and applying security patches.
This is a very poor case for Linux. I run Linux and I couldn't get WannaCry to run at all. Linux will need to step it up if they want to compete with Windows.
SaaS is about to be shat all over
"then there is zero reason keeping you from making the switch to a more reliable, secure platform."
More reliable, secure platform? Prove that statement or clarify what you mean.
I have used various Linux distros going back to 1997. And various Windows versions going back to 3.1. Servers, clients, etc. And I can say that a lot of Linux offerings have improved the front end UX. And installing/updating/configuring apps is a lot easier nowadays with current Linux distros.
But that being said, I still can't see Linux taking over the typical home user's environment. I am a techie, and I like to noodle around. So working around quirks, compilation issues for third party drivers, and the like is a challenge that I don't mind. But it still very much has the look and feel of a hobbyist's experience. Not talking about server-end aspects of Linux. Talking about the enduser's aspects.
Plus as others have noted, there are a fair amount of software packages that are Windows-only. And in those cases, the typical home user might not be willing to start digging into WINE to try to see if they can crowbar their package to port over. And I can perform unbiased side-by-side comparisons, since I have a Macbook Pro, a Windows 7 Pro, and a Debian 8 laptop trio sitting at home :)
Subject says it all. Even if virus writers just go for the largest market instead of the least secure OS then it's just another argument to use Linux.
Just like everyone these days drives an electric car. Oh, wait...something like .001% do.
the world economy depends on tens of thousands of crappy excel formulas and macros that back-office employees are using that their managers pretend dont exist. "oh but thats not logical".... uhmm,,, bureaucracy is not logical. you act like suddenly some rational management is going to come in and fix everything. it doesnt work like that in american business. nobody cares if something is completely irrational, as long as it works politically inside the office.
you cannot switch these to linux without devastating the back office work flow.
If I understand correctly, the only users affected this time were Windows users who do not bother to update their OS to the latest security patches. Yet this poster thinks those same people will somehow bother to migrate their systems to an entirely different OS (Linux or otherwise)?????
....... you end up writing such goofy articles for third rate tabloids. These so called IT journos have in reality never held a paying job in a medium or large enterprise environment. But CIOs love their advice - atleast they think so.
Android is a target because updating is up to the manufacturers, and of course they'd prefer you just buy a new phone.
Isn't systemd considered a nasty virus that infects linux as a whole?
It's not like Linux is any more secure than Windows currently is. Linux has just as much exploits in it, but most of them aren't still known (at least not publicly). The more people will use it, the more it will be targeted by malwaremakers and hackers..
Don't think for a second Linux is so much better secured than any other OS..
While I understand the benefits of Linux desktop, I also understand the reality is its never going to win over many. Even in the darkest days of Windows malware it never suffered a loss of users in any meaningful way. Or has Linux desktop ever gained that many. Sure you can argue the legitimate security reasons all day long to switch to Linux. Most people really don't care and if it doesn't run what they are familiar with, its of no interest to user who needs those programs. The biggest growth of Linux desktop has been Chrome OS and 75% of that growth is in educational market. Nobody really cares but geeks and freaks that Linux desktop even exists.
If everyone switched to Linux, virus writers would target it. So no-one switches. So it makes sense to switch because nobody else will, so you'll be ahead of the game.
Just don't tell anyone else that...
(My company has run completely on Linux since 1999. We're well ahead of everyone else that the bear is chasing.)
If you or your org are vulnerable to WannaCry then I would argue for upgrading your OS or setting up mitigating controls if you have a valid business case for not doing so:
SMB 1.0 – The version used in Windows 2000, Windows XP, and Windows Server 2003 & 2003 R2
SMB 2.0 – The version used in Windows Vista (SP1 or later) and Windows Server 2008
SMB 2.1 – The version used in Windows 7 and Windows Server 2008 R2
SMB 3.0 – The version used in Windows 8 and Windows Server 2012
SMB 3.02 – The version used in Windows 8.1 and Windows Server 2012 R2
SMB 3.1.1 – The version used in Windows 10 and Windows Server 2016
I was honestly expecting someone to post this and how we should all be using slack with everything done using the CLI.
I worked hard to use Linux (either openSUSE or Ubuntu) as my main OS for several years. There are things that just don't work well, and other things that don't work in VM's which force me to use Windows. As it is, Win10 is as good - if not better than - Windows 2000. I'll still fire up Ubuntu for various things but mostly use Windows just fine.
Oh, and i can use Bash in Windows
The Kai's Semi-Updated Website Thingy
Windows users impacted by WannaCry were using EOL versions of Windows or leaving security patches not installed. That behavior won't suddenly be okay just by switching to Linux.
If there's a case to be made from WannaCry, that case is you need to patch your shit. Not change OS vendors.
I love Linux, and just about every *nix I've met. But these arguments are so off-base.
As an aside, the only reason anyone turns on the old SMB protocol is to play nice with Linux.
It's not just about the vulnerabilities themselves.
Let's take the current scenario: you've got a large health entity using scores of machines with an extremely old, outdated, and out-of-support OS. Part of the reason is
a) The software doesn't work on the newer OS
b) Cost of upgrade
B may or may not apply depending on the hardware involved, and is probably roughly equivalent exempting the cost of the OS itself. So let's look at something on a Linux system. Yes, I have software that no longer works on newer Linux versions. SystemD was actually a fairly big nail in this coffin as it changed parts of the underlying system. BUT, all those parts are visible to the user, and there exists at least the possibility to tweak stuff in the OS to get it to work. Make the actual software also OSS and your ability to get updated is that much better.
Now down to the OS itself. Many users were dependent on Microsoft to release a patch for their old OS. For XP, 2003, etc users MS actually came through pretty nicely on this and provided a patch. Win2k users were still out of luck. In Linux-land, the code of the underlying OS and most of the software is available. If it's a matter of fixing a bad call, it's again possible to self-service or at least hire somebody to rebuild it.
Now to the source of the attacks. A known vector used by the FBI. Along with that playbook comes a slew of vulnerabilities that make it hard to believe aren't deliberate. Again, in a closed OS you don't know one way or another, nor do you have the ability to audit. In FOSS there may be vulnerabilities, but there's also much greater audit-ability.
Does Linux have vulnerabilities. Of course. There's heartbleed and numerous cases of broken or buggy crypto. The thing is, these also get fixed in a fairly timely manner, and with a good patch/vulnerability management you're not so much at the mercy of a vendor to do so.
The funny part though is that even for windows, it looks like disabling File and Print Sharing components kills off the components the vulnerability needs (remove F&PS, port 445 goes bye-bye), and there was probably NO NEED to have those enabled, or even installed on most of the machines in question. It was there by default but had the machines been setup properly it would have been disabled, at least removing the one vector for infection.
Security is only as strong as its weakest link and that is the end user. It doesn't matter if they're running MacOS, iOS, Linux, Windows, or DOS. Period. If they're not running updates, the OS doesn't matter.
And if you want to get into the pissing contest, Linux has had a few major bugs with some of its components. Sendmail has had bugs that allowed someone to get root access by simply sending an e-mail to/through the server. Last year Google found a bug in glibc that would cause a buffer overflow and thus allow arbitrary execution. Oh, and let's not forget the privilege escalation vulnerability known as "Dirtycow" that apparently has been around for a decade in the Linux Kernel itself.
You can fault Microsoft on its processes for getting updates out there, but how many Linux boxes patched glibc or the kernel automatically?
Anonymous Cowards generally receive no replies because you're a coward and I'm a bitch
I'm not going to make the argument that Linux is invulnerable to viruses, because it isn't.
However, with Linux, you generally tend to upgrade regularly and continuously. You stay up to date. I doubt many people are still running Linux '95, or more accurately any version of Linux that came out in 1995. They'll be running a fairly recent version, and they'll be doing that because the upgrade costs are fairly minimal or are integrated into ongoing support costs.
Donte Alistair Anderson Roberts - hi son!
Karma: Chameleon
Except the consequence of following that advice is that it becomes the target market for malware... Which still makes it bad advice. It's like saying, "Hey the Titanic is sinking, thousands of people jump in to my life boat!"
Surprised? What did you think I looked like?? Let me guess - either a FAT or SKINNY geek, right???
* Glad to have surprised you then provided I am right on it being unexpected.
APK
P.S.=> I tell you - it's NOT easy having world-class skills/brains AND looks combined (former NCAA lettering 1st string athlete in my day too in Lacrosse for a many time national champ in my alma-mater's division) - lol! That's just sarcasm...
Hey - I've been lucky & blessed by God for which I am thankful for (as well as been surrounded by many TRULY "world-class" folks as GOOD influences around me in my day in friends, co-workers, professors etc. - et al)... apk
See subject: "It's ALL a matter of 'style'" & mine's INIMITABLE + unique! Yes, I am 10 yrs. older BUT I age like FINE wine... lol!
* :)
(I grew my hair out into a ponytail after that pic (was the LAST YEAR after 27++ or so yrs. I had to work for ANYONE ever again (retired that year)) - & it was down the middle of my back circa 2008-about 1 yr. ago when I finally cut it off... pain in the backside!)
APK
P.S.=> Looking down my nose @ you? Naw - just the angle of the photo via IBM webcam... apk
OK, I'm a nerd, and I do appreciate the empowering qualities of Linux, even if it's a PITA. And I do dislike the bloat and insecurity of Windows.
But at the end of the day, I use my computer for 2 things (aside from surfing, email, etc.), and that is pro audio and graphics.
Furthermore, I can't afford the Mac universe.
So it's Windows for me.
I understand the politics, market forces, etc. that prevent a robust audio ecosystem from existing on Linux (even if I wanted to use less capable Linux software, few high end audio hardware manufacturers bother with Linux drivers).
And there's no Linux equivalent to the 1-2 punch of Photoshop + Illustrator (which I have managed to acquire without payment).
And that's not to mention many other audio and graphics programs I use, none of which have Linux equivalents.
So. Do you own/use a computer for the OS, or for the applications?
I think everyone knows this and is making excuses for Microsoft Windows because they're used to it and it's just easier for them to keep doing the same stupid things over and over ~ like in everything else in this world. But Windows is stupid because it's poorly designed and caters to that very same lazy, stupid attitude. Linux or UNIX was well-designed. It runs the world's servers and is therefore a much more powerful target. But it's really because Windows users are more often incredibly stupid and lazy (and that Microsoft can't or won't make up for these qualities, only exploit them) that Windows will always be a mess, security-wise. If Linux was put in the same position of market dominance, not only would it have all the benefits it has now but it would make far better use of the whole world watching Linux for problems and ACTUALLY FIXING THEM. Frankly, WannaCry is just taking advantage of stupid, lazy Windows users and their employers. The world deserves WannaCry because it's just taking advantage of all its opportunities. Just like Microsoft. You deserve each other. You were made for each other. Linux users might not be better, but they're more likely to be. And their initiative will serve them well when they're using their computers or even playing around with the code. While others are shelling out more money to the bad people and companies built specifically to exploit their vulnerabilities and keep them open. BECAUSE IT MAKES THEM MORE MONEY. If people were responsible and intelligent, this wouldn't be an issue. But they're not and it is. Enjoy your bloatware, idiots!
You can argue with these m$ shills till your eyes bleed
Problem is AAA gaming is not available on linux, that's the only thing keeping windoze alive...
The issue for migration to Linux on the desktop for many, many Windows users (not for scientists, IT people and other tech people, but for the bulk of users who are focused on the task not on the OS) is this: In many, many, many industries, workflows center on M$ Office. Any business that works with documents and reports that are handled by non-IT people uses Office. Public sector, (government uses it from top to bottom), publishing, academia, corporations, they all have spent 20+ years using M$ office and they consider it a problem solved and they don't want to reopen the problem and implement a different solution. Retraining and re-implementing templates and other customized stuff alone would cost a vast amount of money. A majority of work is NOT done in browser. Maybe in some sectors, but not by people who generate, manipulate and publish content, invoices, quotes, catalogues, ... you name it. They're not actually interested in the technology that underpins it (and that is the majority-- they don't care. If they have to think about it, that's a fail). And MOffice is often used in tightly integrated, customized ways -- businesses have custom templates, procedures, custom ribbons in Office, they use the M$ ecosystem from data collection through to reporting and publication.
So, somewhat paradoxically, for these sorts of businesses/govt departments, Linux on the desktop would be a lot more attractive if M$ Office ran in a browser will a very high level of capability and integration such that it was almost indistinguishable from the desktop version. If it ran seamlessly in the cloud, which is certainly does not now, that would be the best boost Linux has ever had.
Decoupling MOffice from Windows would pretty much kill Windows, I imagine.
Another issue is that Microsoft has rapidly been dropping support for Windows 7/8 on any Intel Processors - particularly starting with 7th generation. Users have no choice but to run windows 10 on it.
People on forums have already been reporting the inability to get windows 7 to run stable enough on these processors.
To me, it's some BS agreement between these companies to force more money out of people's pockets, but really, to satisfy both companies' agreement with NSA's backdoors-in-everything mandate.
Some pieces of software can only run on windows and has no Linux alternatives. So if you're given a new laptop by your employer, even the IT department has no choice by to run that piece of face-fuck-shit malware OS.
How can anyone/company NOT be accountable for this BS makes absolutely no sense.
The thing is, if you replace every Windows with Linux desktop, you will have an army of idiots, who click on any random attachment, using Linux. Once this happens, Linux will become economically viable target for hackers. And once that condition happens, there is plenty of security holes to explore. Same DirtyCOW can be exploited. And as with Windows, I do not believe that Linux desktops and servers will be patched regularly. So, it is not Linux, it is Linux users who make the difference.
Can you tell me of a software installing and running smoothly (just install and work) on each and every Linux distro? No? Thought so.
So why do you suppose a mere virus can achieve such feat? "The LINUX(tm) operating system" does not exist. Linux is a kernel, a piece of an OS. Debian, CentOS, RedHat are operating systems. AND they are all different.
The great pain of software houses with Linux is supporting distros. A developer can guarantee his product on the distro he's using and maybe another two or three. Don't you use one of them? Good work and good luck with manual install (and/or building from source). Same with viruses: a Linux virus can't rely on a particular OS and its infectivity would be a lot lesser. This is IMHO the main security bonus of the linux OSes.
Most software has migrated to either Software as a Service (SaaS) or the cloud. The majority of work people do is via a web browser. Chrome, Firefox, Edge, Safari; with few exceptions, SaaS doesn't care
Just wrong. Another dumb ass ignorant article form a twerp who think they have some work experience.
Let's give credit where it is due.
FTA: The first known ransomware attack was called "AIDS Trojan" that infected Windows machines back in 1989. This particular ransomware attack switched the autoexec.bat file.
I wrote a trojan (spread by BBS) in 1986 that swapped the autoexec.bat file. It would wipe the hard drive of some necessary system files, but did not stoop to the level of scum-baggery of asking for a ransom. Those ransom-ware guys are the absolute worst.
You don't need to outrun the bear, you only need to outrun the other campers.
It appears that Windows will be a far bigger and softer target for the foreseeable future because most people need some Windows-only app or other. That's great for those off us who can use an alternative that's easier to secure and much less tempting to malware developers.
So if you can, you should switch to Linux, not because it's popular, but at least in part because it's not popular, and probably never will be.
If they were really doing all their work through browsers and using SaaS the original issue would not exist so no reason to switch OS.
The data would be safe as the data is not stored on it, not accessible to the virus/trojan. The encrypted machine could just be reimaged and off you go.
A man without feet does not need new shoes.
Do people actually use software as a service? I know no one who uses it.
This whole debate is dumb. Whatever the most popular OS is will be the most targeted OS. Critical business system shouldn't be connected to the Internet. It's that simple.
Everything since Windows 10 happened has been a case for Linux, it's just still not an easy one by any means to your average Windows user unfortunately.
Let's see here. Shady strategies to force users to upgrade, horrible advertisement schemes, forced telemetry, always on always listening always dialing back strategies... not to mention how Microsoft keeps persisting on ideas like Windows 10 S because what they really want is to copy Apple and the walled garden model.
Malware, vulnerabilities and ramsonware have been there for the longest time, and arguably for regular users the horrible experiences of the past with Vista, BSoD, among several other problems have been a far more convincing case for Linux. We don't even have that many shovelware as we did in the past.
It just won't happen. Sorry. It's not your fault, but this has never been a convincing argument, not for regular Windows users. It won't start being because of WannaCry. And defeatingly enough, other than our own tech circles, it's likely that most people haven't even paid much attention to WannaCry anyways... it'll be forgotten, if it isn't already, as fast as stuff like Mirai Botnet, among others. I mean, even techies, do most people remember the most publicized malware attacks of 2016? I have to admit I don't.
And yes, I know Android exploded in popularity, I know over half of servers these days uses Linux, I know almost all supercomputers also do... but your regular non-techie consumer will, for the foreseeable future, always run to Windows, or at most Macs. In fact, if WannaCry was really going to do any substantial push for migration (which let's admit it, it won't), it'd be for Windows users going for Macs.
The unsolvable problems that Linux will seemingly never be able to overcome are:
1. Advertisement and marketing. An image problem;
2. Community. Even for folks like my mom who avoids using computers like the plague, if she has a problem with it, there's bound to be someone near her that can help. Linux? I wouldn't even know were to start. Neither I nor her friends would be able to indicate a repair shop or something with someone who could deal with command line configuration. I perhaps have a couple of friends who could help, but which would most likely be working with no free time to help.
And this isn't only about OS, it's about apps. Sure, Linux have plenty of basic office level apps and whatnot, but it's not about having an app that works in a similar way, it's about having people around to help with specific tasks as they arise. This is also why Microsoft Office still dominates while open source alternatives like LibreOffice or OpenOffice never catches on.
The needs non-computer geeks have around computers are often misunderstood, underestimated, and superficially analized. I feel bad because I'd really love for everyone to move to Linux. With enough people there, developers would be forced to migrate too. I'd love to have a fully functional Ubuntu smartphone. A Debian desktop with all I need. A Mint tablet to go around. Well, actually I have an Ubuntu laptop and tablet. But it's not something that I'd recommend for family and friends who don't know much about computers, because the whole thing makes no sense to them. Basically all of them (and I come from a big family) have no friends or relatives that would be able to help either to make their regular stuff work, or to solve problems when they come up. Among my multiple uncles, aunts, cousins, nephews and nieces... I must be the only one to have had contact with Linux. And I don't even know how to handle it properly myself.
You can secure macos, windows and the rest. The cost is not that high for a practical level of security. And overall it's lower than the cost of configuring and maintaining a linux desktop and foregoing the applications that are only available on windows and macos.
Moreover, people who make these decisions for big organizations would rather leave technical problems for their technical people and keep their day-to-day computer usage as simple and familiar as possible for themselves.
Make a linux desktop that installs with a simple wizard and gives you painless access to all of your windows apps and people will convert in meaningful numbers. There is probably no market at all for macos-to-linux conversions. People who buy macs don't want linux. Elsewise, the only linux desktop with a percentage worth counting will be chromeos.
Looking at the CVE database, the top three OSs with the most vulnerabilities on the list are Linux distributions.
https://www.cvedetails.com/top...
Just because there was a high profile attack doesn't inherently make one OS more insecure than another.
In my own company, it was a huge productivity boost to upgrade to Linux. Compilation is much faster, and we now have vastly superior development tools. The user interface is also much better. If anyone has used windows 8 or 10, they will be well aware of the clunky mess that windows has become. Even switching as a new user, I found Linux easy to understand. IT costs also drop, since real central installation of software works, clients are more reliable & easier to administer centrally, and the free software catalogue offers mostly better alternatives to previous commercial products. The only downside is finding good IT staff. While fewer are needed, they can't scrape along incompetently like many windows admin do.
Almost everything I use my computer for can't be done in a browser and some of my apps are windows only.
This idea that everything can be done online is just one step removed from the daft idea that keeps cropping up that you can do everything you want on a tablet.
The long-held belief that Linux is somehow a much more secure OS than Windows is a long-held fallacy. Linux is just as vulnerable to viruses and hacking as any other system. In fact, a mis-configured Linux server can have more holes in it than a colander. The only reason Windows get's targeted so often, is it's ~90% market share of desktop PC's. If linux had that sort of market share, all the viruses would target Linux instead. Everyone would be singing the praises of Microsoft and how their black-box proprietary OS makes it hard for hackers as they have no access to source code.
If you gave me a choice between a printer and a giraffe with explosive diarrhoea, i'll get my ladder and my raincoat
No virus can hit a nonexistent OS
Great I'll run HURD, chances of being targeted by a worm or virus is zero
Sorry, fallacy.
Servers, at least when used professionally, usually not only have administrators that at least have a hint of an idea what they're doing, often these people also have patching schedules and processes to follow. Not to mention that few of those servers, even when running Windows, are used to surf to questionable sites, open mail attachments or engage in other activities that result in a compromised system.
Also, these servers are usually guarded by firewall systems that make such attacks way harder and less likely to succeed.
Compare this to the average home PC, "administrated" by someone who thinks TCP is the Chinese secret service and who would gladly trade security for more dancing pigs. If its patch level is current, then mostly because Win10 doesn't offer any choice. This PC is used for everything the server is not, i.e. engaging in a lot of insecure and potentially harmful activities.
And there is many, many more like this one. Insecure, used by idiots that click everything and anything you send them. And since you're, as an attacker, usually more interested in identity theft and compromising a large number of systems. Consumer PCs are the low hanging fruit, all right, but more due to the users than the OS used.
We used to have a Bill of Rights. Now, with the rights gone, all we have left is the bill.
The first known ransomware attack was called "AIDS Trojan" that infected Windows machines back in 1989.
Windows 3.0 didn't come out until May 1990 and nobody seriously used the earlier versions because they were crap. Also it said it infected the autoexec.bat file which is an MS DOS file not a Windows file.
Build a Man a Fire, and He'll Be Warm for a Day. Set a Man on Fire, and He'll Be Warm for the Rest of His Life.
Ironically your opinion isn't new and it's ALSO wrong.
Microsoft's entire business model has always been principally the sale of SOFTWARE. They dabble in hardware, sure, and now they're trying to ape Apple's approach but it's all for not. Reputation matters, and many of us will never forgive or trust Microsoft ever again.
Microsoft you see, has for decades made BILLIONS of dollars selling the same group of poor, benighted assholes the same fucking thing OVER AND OVER AGAIN. NOW. How do you get someone to pay over and over again for the same thing? In Microsoft's case, you build-in security flaws, holes, etc., and probably add new ones with each patch and service pack. Kinda like how when people paid fire departments by the fire fought, when business got slow the firemen turned to arson so they'd have a fire to fight so they'd get PAID.
Microsoft's approach is to FORCE you to use only a legitimately purchased copy, (by ensuring you constantly have to have your computer call in to Microsoft to get security updates, which only works if you register it, which won't work with pirated software). You'd be insane to run an internet connected machine with Microsoft's wretched, shitty goddamned shitware WITHOUT updates.
It's just the kind of dirty bullshit they do.
GNU/Linux, by contrast, is supported and maintained and developed by people who have no motivation to bake shit into their software... on the contrary, they have a vested interest in making the software as good and secure as possible.
So, either you're a fool who ignores the obvious, or you're a paid Microsoft SHILL trying desperately to save a dying business by spreading FUD and fake news talking points. GNU/Linux will NEVER be anything LIKE as susceptible to hacking, and malware of every kind, as Microsoft's Garbage Crippleware, because of the motivation of those responsible FOR it.
It's, coincidentally, why BANKS can't compete with CREDIT UNIONS, and have to spend money bribing corrupt politicians to make laws suppressing and limiting them, such as requiring restrictive fields of membership, etc.
Just tell me what would happen to Microsoft's bottom line if they EVER came out with a DECENT AND RELIABLE, AND SECURE operating system... one that DIDN'T need periodically to call in, and which people weren't forced to update?
They'd go out of business which they should, because they're essentially a criminal enterprise whose assets should have been seized under the RICO ACT and been broken up, just like Standard Oil and Ma Bell.
So your argument is trash, GNU/Linux HAS been targeted by hackers and their ilk, but much less successfully because it's just BETTER.
Oh, and by the way, most of the INTERNET runs on GNU/Linux, and has for like... decades, so yeah... it's a tempting target, and oh by the way, there are now WAY more computers running the LINUX KERNEL than the Windows Shitnel, since all the Android devices also run it, and the few successful malware attacks generally require a rooted or otherwise compromised device to stage an even marginally successful attack.
Basically, you have to open a door or window and LEAVE it open, and that's only the programmers' fault in giving you the FREEDOM to do stupid shit, (contrasted with Apple's walled garden approach, which protects users from their own stupidity).
So no, we're not fooled, and we're not falling for the usual Microsoft BULLSHIT false argument.
Long live GNU, long live Linux, and FUCK MICROSOFT AND ALL THEIR EVIL SHITFUCKS.
...unless you run Debian which tends to randomly break shit. Synaptic, gufw and other GUI system tools just stopped working after a reboot randomly. No interference. Just a reboot.
Except the consequence of following that advice is that it becomes the target market for malware... Which still makes it bad advice. It's like saying, "Hey the Titanic is sinking, thousands of people jump in to my life boat!"
The thing is, the vast majority are sticking with the Titanic, and there's no sign of that changing. So, until it does, you're still better off on the lifeboat.
Slow down, cowboy! It has been 4 hours since you last posted. You must wait another few hours.
People/organizationa care about applications, not operating systems. Virtually the entire corporate world uses Microsoft Office. But the most important applications are speciality software. Everybody develops for the main platform. It would take decades for Linux to become mainstrean and there is no incentive for that. Besides, any corporate desktop version of Linux would be restricted for the end user. If it's a Unix-like environment tgat you want, why not choose macOS? In the end, once again, it's the applications and the organization-wide integration that counts.
nt
Of course malware writers aim at the largest target. They also go after the easiest target. The only people who go after hard targets are state actors.
However... Linux is yet another, and the most successful version of UNIX. And it's inherently a much harder target, because of its architecture, and the way it works. Admittedly, you can *make* it vulnerable, by things like giving root a password of jesus, or love, or 12345678... but the separation of authority, along with the structure (X is *NOT* in ring 0, for example) makes it a harder target.
Form an industry group to tell VLC that you want Linux versions.
I don't see the problem. I thought VideoLAN was already putting out both GNU/Linux and Android versions of VLC media player.
Get estimate of how long it will take X to be rewritten to run on Linux.
Xubuntu already includes X Window System in the default install.
You can fault Microsoft on its processes for getting updates out there, but how many Linux boxes patched glibc or the kernel automatically?
Ubuntu Desktop has unattended-upgrade in a cron job, and I imagine that its derivatives do as well.
"I can already hear the tired arguments. The primary issue: software. I will counter that argument by saying this: Most software has migrated to either Software as a Service (SaaS) or the cloud."
Well this means that Linux is not for 3rd world or any people that have limited or none Internet connection. What a great point you have: The world must shape to Linux and the web services instead to have decent software or just get bust. The geek of the month award!