Quote:
Originally posted by LennonCook:
Not realy. It isn't possible to elminate the viruses and the spyware, but it's definately possible to reduce the effect it can have. Just look at Linux: most security vulernabilities in it require someone to be physically sitting at your computer, and be logged in.
|
The slapper worm back in 2002 showed just how solid linux systems are.
From the standpoint of remote buffer-overruns, all operating systems are
vulnerable to sloppy programming. From the standpoint of social engineering
e-mail worms, all systems are vulnerable to stupid users.
If you can explain why any software that is going to bind to a port 1-1024 needs to be started as root then I might start to belive in some of the mythical security that Linux has. Other then crapy design there is no good reason why something like Apache needs to be started as root, and it provides a nice window of vulnerability that defeats the whole privliges system that Linux security is usually based on.