Re: Hey, Red Hats ...
Originally posted by Chagur
Hey, rde ... the kidlette's time may be closer than even I thought. [/B]
Before ramen was widely disseminated, I and everyone I know had installed a blocking rule. (This is about to turn into an open source rant, so if you're irritated by teh whole damn argument, look away now...)
Within hours of ramen becoming known, fixes were available for anyone who wanted them. Microsoft, on the other hand, have frequently sat on known bugs^H^H^H^Hissues for months, leaving systems vulnerable while they try to make sure their fix doesn't break previous patches. Hands up everyone who knows an NT administrator who found something broke when he installed a 'service pack'?
If you administer an NT box, there's only one source for fixes; Microsoft. If they couldn't be arsed, or if they're slow, you're fucked. You may be the best programmer in the world, but that's no use whatsoever if you don't have access to the source code.
Of course, if you're that shit-hot a programmer, you're unlikely to be administering an NT box in teh first place.
I used to work in a cyber cafe. One day I had to show an MCSE how to paste the 'MCSE' logo into a word document. Muppets like this have no business running critical systems, but Microsoft is happy to certify them.
Is Red Hat 6.2 vulnerable? Yeah. If you take the MS approach and click on 'server install' and sit back, secure in the knowledge that your work is done. Anyone even slightly clueful will disable all unnecessary services, download all updates and subscribe to bugtraq to ensure their box is at least nominally secure.
In summary:
Linux is more secure than Windows because
1. It's open source. If you encounter a problem, you can fix it, or find at patch written by someone who knows than you. You don't have to adopt the 'wait and pray' attitude of NT admins.
2. Linux won't let you do stupid things with normal accounts. Windows is a single-user operating system with a few kludges to allow individual logins. If your mom clicked on a batch file containing the line "deltree c:\", you can kiss a significant chunk of your hard disk goodbye. If your mom (somehow) accidentally typed "rm -rf /" on a linux box, she'd be told to piss off. Assuming you haven't given your mom root (ew!).
3. This may change as evil corporations port their crap to linux, but for the moment there are no mail programs that'll let you fuck your system in such a thorough way as Outlook manages now. Will we see programs attempt to circumvent safeguards in the interest of 'usability' (AKA shitty features you don't want, but make the product look more like it's value for money?) Of course. But it'll be a lot harder to write a truly OS-killing utility.
I could go on (and on), but I've take up enough of your time.