01-09-2005, 05:25 PM | #11 | |
Jack Burton
Join Date: July 19, 2003
Location: an expat living in France
Age: 38
Posts: 5,577
|
Quote:
__________________
|
|
01-09-2005, 05:31 PM | #12 |
Unicorn
Join Date: May 17, 2001
Location: N/a
Posts: 4,222
|
ROFLMAO
Lennon, your threads crack me up! [img]graemlins/biggrin.gif[/img] I'm sure I'd appriciate them a lot more if I knew what the hell was going on inside them. Your crusade against Microsoft is always good reading. But Longhorn, sp2, wha? Forgive my ignorance, and let this humble yokel laugh at all them funny words. |
01-09-2005, 05:35 PM | #13 |
Jack Burton
Join Date: November 10, 2001
Location: Bathurst & Orange, in constant flux
Age: 37
Posts: 5,452
|
Dplax: Not so. The Slapper worm was to do with Apache more than Linux (although it only affected Apache on Linux, not Apache on Win32 AFAIK). It is the only major worm Apache has had in it's lifetime, compare to MS IIS which has had many.
Now, which is more popular? On major commerical servers, Apache has around 70% and rising. In other words, Apache is far more popular than IIS, and yet it has had far fewer exploits. Security comes with secure programs, not with smaller user bases. [ 01-09-2005, 05:38 PM: Message edited by: LennonCook ] |
01-09-2005, 05:40 PM | #14 | |
Harper
Join Date: October 2, 2001
Location: Aberdeen, Scotland
Age: 42
Posts: 4,774
|
Quote:
[/QUOTE]Actualy, Seraph is right about this. You need root priviledges to bind to a port <1024. Run a ps -A with apache running and you should see the parent process is running as root, with a bunch of non-root children (assuming you actualy had some traffic other than your own testing, which you dont). Which neatly explains why this isn't a problem with apache - the processes doing all the work don't have root priviledge. Other programs get round this by dropping root priviledge after binding to the port. I would have reservations about running anything that kept root priviledges on a process which was listening to a port, since an author that didnt think to work around that probably didn't secure the rest of it properly. But, this is it. Its up to the author to write a secure program, and the admin to choose a secure program. Linux dosent generaly make mistakes for you, and it won't do things like exposing file and print sharing to the internet by default. Or running a messenger service on every machine by default regardless of whether its needed. Or basing a large portion of its local infrastructure on a protocol intended for remote execution of code.
__________________
[img]\"http://www.sighost.us/members/Zvijer/andrewas.gif\" alt=\" - \" /> |
|
01-09-2005, 05:41 PM | #15 |
Apophis
Join Date: July 29, 2003
Location: The Underdark cavern of Zagreb
Age: 37
Posts: 4,679
|
Longhorn -The next sequel in the best-selling point-and-click adventure, the Windows franchise.
SP2 - an expansion pack for Windows XP. New missions, new levels, new enemies! Debian - a Linux distribution(version) Root - the very top of the hierarchy Buffer overrun - a way to fool a security system into a continual loop. Like you mention the number thirteen to someone who can count up to ten. Any more? [img]tongue.gif[/img]
__________________
MAKE LOVE, NOT SPAM! |
01-09-2005, 05:43 PM | #16 | |
Jack Burton
Join Date: November 10, 2001
Location: Bathurst & Orange, in constant flux
Age: 37
Posts: 5,452
|
Quote:
Longhorn = the next generation of Windows. It was originally going to debut this year (maybe last?), but MS have delayed it. Last I checked, it was going to be atleat 2007 before we even see a glimpse of BETAs. It has alot of security updates (supposedly), and some stuff about digital rights management. That is, preventing you from using CDs or play MPEGs unless you pay the author money and they pay MS money. |
|
01-09-2005, 05:48 PM | #17 |
Apophis
Join Date: July 29, 2003
Location: The Underdark cavern of Zagreb
Age: 37
Posts: 4,679
|
You think wrong. It's 120 MB, 200 if you want the LAN professional edition for installation to other machines. And it actually does do something usefull, if you set it right.
__________________
MAKE LOVE, NOT SPAM! |
01-09-2005, 05:57 PM | #18 | |
Jack Burton
Join Date: November 10, 2001
Location: Bathurst & Orange, in constant flux
Age: 37
Posts: 5,452
|
Quote:
|
|
01-09-2005, 05:57 PM | #19 | |
Jack Burton
Join Date: July 19, 2003
Location: an expat living in France
Age: 38
Posts: 5,577
|
Quote:
__________________
|
|
01-09-2005, 05:59 PM | #20 | |
Jack Burton
Join Date: July 19, 2003
Location: an expat living in France
Age: 38
Posts: 5,577
|
Quote:
__________________
|
|
Currently Active Users Viewing This Thread: 1 (0 members and 1 guests) | |
|
|
Similar Threads | ||||
Thread | Thread Starter | Forum | Replies | Last Post |
An Interesting Article... | Arvon | General Conversation Archives (11/2000 - 01/2005) | 4 | 10-27-2004 12:19 AM |
Here's an interesting article... | Arvon | General Conversation Archives (11/2000 - 01/2005) | 5 | 07-02-2004 04:43 AM |
An interesting science article! | Sir Kenyth | General Conversation Archives (11/2000 - 01/2005) | 5 | 04-04-2003 03:58 AM |
Interesting Article | Azred | General Conversation Archives (11/2000 - 01/2005) | 1 | 03-12-2002 02:31 PM |
Another interesting article | Sir Kenyth | General Conversation Archives (11/2000 - 01/2005) | 8 | 03-04-2002 12:23 PM |