Re: [newbie] Linux VS Windows virus Vulnerability

2003-11-29 Thread JoeHill 
On Sat, 29 Nov 2003 17:38:25 -0800
Russ [EMAIL PROTECTED] wrote:

 This is from a Win list. All above my head. Any truth to it?

None whatsoever.

No one with any experience in security and who has not been bought off my MS
seriously believes that Windows is *anywhere near* as secure as Linux or any of 
the Unix variants.

Whoever wrote this has absolutely no idea what they are talking about.

My favourite part:

You can hack the user's 'PATH' and plant a bunch of trojans and hope you
can sucker the user into typing 'su' 

1. How the hell could you hack the users PATH if you cannot gain access in the
first place with one of the millions of mind-blowingly trivial exploits like
MS-Blaster or other worms?

2. Notice that the writer uses the word hope, ie. compromising a Linux system
*requires the participation of the user*, whereas the same is not true on
Windows.

For more info on this:

http://securityfocus.com/columnists/188

http://www.ccianet.org/papers/cyberinsecurity.pdf

The idea that script kiddies will find ways to exploit *nix systems as they
become more popular on the desktop is a myth, and the people that spout this
garbage usually have a serious case of OS Envy.

-- 
JoeHill ++ ICQ # 280779813
Registered Linux user #282046
Homepage: www.orderinchaos.org
+++
Athens built the Acropolis. Corinth was a commercial city, interested in purely
materialistic things. Today we admire Athens, visit it, preserve the old
temples, yet we hardly ever set foot in Corinth.-- Dr. Harold Urey, Nobel
Laureate in chemistry

Want to buy your Pack or Services from MandrakeSoft? 
Go to http://www.mandrakestore.com

Re: [newbie] Linux VS Windows virus Vulnerability

2003-11-29 Thread Bryan Phinney 
On Saturday 29 November 2003 08:38 pm, Russ wrote:
 Hi All,

 This is from a Win list. All above my head. Any truth to it?

Given that a lot of virus writers and malicious hackers are in it purely for 
the bragging rights and given that any successful mainstream virus or exploit 
on Linux systems would give much bigger bragging rights than a similar 
exploit on Windows, if it was easy to do, it would have been done.

People speaking about security and telling you how easy it is to do something 
that they have not managed to do should be proof enough that the wind that 
they are blowing is not coming out of their mouths.

-- 
Bryan Phinney
Software Test Engineer


Want to buy your Pack or Services from MandrakeSoft? 
Go to http://www.mandrakestore.com

Re: [newbie] Linux VS Windows virus Vulnerability

2003-11-29 Thread rikona 
Hello Russ,

Saturday, November 29, 2003, 5:38:25 PM, you wrote:

R Hi All,

R This is from a Win list. All above my head. Any truth to it?

R Thanks
R Russ

R [I suspect almost no Unix users know how to properly configure
R IPchains to prevent a random process from accessing the network
R improperly].

Ask him how to do it. I'd like to do that too.

-- 

 rikonamailto:[EMAIL PROTECTED]


Want to buy your Pack or Services from MandrakeSoft? 
Go to http://www.mandrakestore.com