RE: [Full-Disclosure] IE Web Browser: "Sitting Duck"
From: Andrew Poodle (andrewp_at_IRW.co.uk)
Date: 07/07/04
- Previous message: Barry Fitzgerald: "Re: [Full-Disclosure] IE Web Browser: "Sitting Duck""
- Maybe in reply to: joe: "RE: [Full-Disclosure] IE Web Browser: "Sitting Duck""
- Messages sorted by: [ date ] [ thread ] [ subject ] [ author ] [ attachment ]
To: <FULL-DISCLOSURE@lists.netsys.com> Date: Wed, 7 Jul 2004 15:48:15 +0100
> -----Original Message-----
> From: full-disclosure-admin@lists.netsys.com
> [mailto:full-disclosure-admin@lists.netsys.com] On Behalf Of
> Bruce Ediger
> Sent: 07 July 2004 13:41
> To: FULL-DISCLOSURE@lists.netsys.com
> Subject: andrewp@irw.co.uk - Email found in subject - RE:
> [Full-Disclosure] IE Web Browser: "Sitting Duck"
<snip>
> At least in practice the unix-a-likes demonstrate more
> security than the flavors of Windows, don't they?
>
> I mean, where's the linux chain mailer to equal SirCam?
>
> Where are the multiple linux worms to equal Code Red, Nimda,
> Deloder, Witty, SQL Spida, Slammer, Blaster, MyDoom, etc etc etc?
<snip>
> The evidence seems to suggest that Linux is more secure than
> Windows, particularly in whatever ways cause susceptibility
> to mass-mailers.
The evidence thus far does seem to "suggest" that linux and such is more
secure than Windows, but to that extent is that down to...
1: technical knowhow of the userbase tends to be higher, leading to the
correct updating, patching, firewalling and general confiuguration of
the machines
2: the %age of linux based machines in use, meaning it's a small enough
userbase that it's of a relatively low interest to those malicious
coders out there.
I'm sure that as the userbase of linux increases, and on average,
dumbs-down, so will the number of attempts at devising linux specific
trojans/exploits/viruses.
The nature of the linux OS means that it's likely that these will have
less impact than their existing MS counterparts.
Despite MS being accused of security through obscurity by not
publicising loopholes quick enough, it's ironic that Linux benefits from
a bit of security through obscurity due to it's relative small desktop
userbase.
Incidentally, I use both OS' regularly on my personal laptop (dual boot
Win XP Pro and SUSE Linux), although my development box at home is
Fedora Core 1, and I work for a predominatley MS consultancy and
developmenthouse, so you could consider myself well and truly on the
fence.
Regards
Andrew
-- Andrew Poodle Consultant IRW Solutions Group Ltd 17 Glasgow Road Paisley PA1 3QS t: +44 (0) 141 842 1142 f: +44 (0) 141 842 1134 e: andrewp@irw.co.uk w: www.irw.co.uk --------------------------------------------- IRW Solutions Group Ltd IRW Platinum: Strategic Consultancy IRW Focus Blue: e-Business Software Solutions IRW Associates: Managed Services --------------------------------------------- This document should only be read by those persons to whom it is addressed and is not intended to be relied upon by any person without subsequent written confirmation of its contents. Accordingly IRW Solutions Group Ltd disclaim all responsibility and accept no liability (including in negligence) for the consequences for any person acting, or refraining from acting, on such information prior to the receipt by those persons of subsequent written confirmation. If you have received this e-mail message in error, please notify us immediately. Please also destroy and delete the message from your computer. Any form of reproduction, dissemination, copying, disclosure, modification, distribution and/or publication of this e-mail message is strictly prohibited. _______________________________________________ Full-Disclosure - We believe in it. Charter: http://lists.netsys.com/full-disclosure-charter.html
- Previous message: Barry Fitzgerald: "Re: [Full-Disclosure] IE Web Browser: "Sitting Duck""
- Maybe in reply to: joe: "RE: [Full-Disclosure] IE Web Browser: "Sitting Duck""
- Messages sorted by: [ date ] [ thread ] [ subject ] [ author ] [ attachment ]
Relevant Pages
|
|
