On MovieTome: The 10 worst movies of 2009 so far!
BNET Business Network:
BNET
TechRepublic
ZDNet
TalkBack 30 of 89:
Next »
« Previous
Your statements were true 5 years ago
A reasonbly secured *Nix system doesn't run user apps setuid/setgid. *ONLY* a local administrator can hose the whole system;

While it is true that Win 3/95/98/ME were not securable in the way you are talking about, why is it relevant to today (or even 5 years ago)? That line of Windows is dead, XP came from 2000 which came from NT which was built with security in mind and has always behaved in exactly the way you described above.

Even your description of the apocryphal .sh file attachment in the e-mail proves my point. With which case will social engineering be more effective:
1) (Windows): click the link to see naked pictures of....oops, now your 0wn3d

There have been a couple bugs where this has been possible, yes, but Linux also had a PNG vulnerability that had an identical attack vector. I'm not suggesting that Windows is perfect by any means but you are delusional if you think that Linux distros are the magic cure-all to your security woes. Windows is securable, as millions of Windows users can attest to, end of story.

2) (*Nix, and I quote your post here): "Email a .sh file to every user who got infected with Nyxem along with instructions on how to set the execute bit and instructions on how to run as root..."

You laugh but there was a successful exploit a while ago that used password protected zip files (this was when email scanners were beginning to scan the contents of zip files). The user had to open the zip file, enter the password (provided in the email), and then double click on the executable... and people did it! I've actually counted the number of steps required to run a zipped executable from Outlook (Outlook strips out executables so it must be zipped to send it) and a tarred .sh from KMail (the .sh was tarred with the executable bit set). It took fewer steps to run the .sh file than it did to run the Windows executable. The point isn't that Outlook is better, the point is that Outlook is good enough to stop users from accidentally running attachments. Someone who manages to run an executable from Outlook went to a lot of trouble to do so and would do all the required steps to run a .sh script from KMail.
Posted by: NonZealot   Posted on: 01/24/06 You are currently: a Guest | Members login | Terms of Use
Reply to Story Reply to Message

Alert moderator to an offensive message

Subscribe to this discussion via Email or RSS

Poor trojan never had a chance. sad  NonZealot | 01/23/06
You got the order a little wrong.  DonnieBoy | 01/23/06
No, I stand by my points  NonZealot | 01/23/06
So you deny that Mac/Linux/BSD/Solaris were not affected?  DonnieBoy | 01/23/06
Donnieboy  toadlife | 01/23/06
But, since 80% of sites use Apache, there should be lots more exploits  DonnieBoy | 01/24/06
The stupidity overwhelms me!  NonZealot | 01/24/06
At the absolute worst, Apache has slightly more exploits that IIS  DonnieBoy | 01/24/06
DonnieBoy, the pipes, the pipes are calling  NonZealot | 01/24/06
The fact remains that Apache is NOT significantly more likely to be  DonnieBoy | 01/24/06
DonnieBoy still avoiding the question!  NonZealot | 01/24/06
Well, the bottom line is wheather or not there is a significant  DonnieBoy | 01/24/06
I graciously accept your defeat.  NonZealot | 01/24/06
If you want to make other wierd arguments, go ahead.  DonnieBoy | 01/24/06
No One Hacks the Apache Porn Sites?  PMC-CON | 01/24/06
give me a break!  T38 | 01/24/06
A Dang good reason  Cayble | 01/24/06
Hmmm, interesting  maldain | 01/24/06
here's the problem  justWes | 01/23/06
And, you are one of the few that understand why we need a secure OS!  DonnieBoy | 01/23/06
Then it isn't the OS  NonZealot | 01/23/06
Rubbish  Richard Flude | 01/24/06
Educate yourself  NonZealot | 01/24/06
So, is it ok to make it very easy, almost automatic, to execute email  DonnieBoy | 01/24/06
No, and it isn't with XP SP2 and/or Outlook  NonZealot | 01/24/06
Funny that you mention Outlook, one of the worst security holes around.  DonnieBoy | 01/24/06
Funny that you mention Linux, one of the worst security holes around.  NonZealot | 01/24/06
Your name  petteyg359 | 01/25/06
sigh...no, it's *BOTH*  T38 | 01/24/06
Your statements were true 5 years ago  NonZealot | 01/24/06
power in the users hands  moses_z | 02/06/06
Hey NonZealot  toadlife | 01/23/06
Thanks toadlife!  NonZealot | 01/23/06
NonZealots position is clear  Richard Flude | 01/24/06
Not true  NonZealot | 01/24/06
One thing you overlooked...  wolf_z | 01/24/06
Poor little closet zealot  Sabz5150 | 01/24/06
Keep up with the times  NonZealot | 01/24/06
Ok, there are at least 100 times more exploits for Windows Desktops  DonnieBoy | 01/24/06
Cleverful retort  Sabz5150 | 01/24/06
It was clever!  NonZealot | 01/24/06
wrong again  T38 | 01/24/06
What's Up With This Comment?  PMC-CON | 01/24/06
Hey, genius....  Hrothgar - PCLinuxOS User | 01/24/06
uhhh...you're not as secure as you think  T38 | 01/24/06
Another clueless linux n00b  toadlife | 01/24/06
wanna bet?  T38 | 01/24/06
Sorry but this is nothing but FUD  NonZealot | 01/24/06
I don't think any home OS is invulnerable  NonZealot | 01/24/06
Oops, clarification  NonZealot | 01/24/06
lol happy  T38 | 01/24/06
Myth Busting Time!  Spikey_Mike | 01/24/06
I'll ask you the same old tired question  NonZealot | 01/24/06
That Register article is rife with logical fallacies and FUD.  toadlife | 01/24/06
NonZealot  Hrothgar - PCLinuxOS User | 01/24/06
It hurts too much  NonZealot | 01/24/06
response  Hrothgar - PCLinuxOS User | 01/24/06
Ah, I agree with you totally!  NonZealot | 01/24/06
Third party clients and webmail  Hrothgar - PCLinuxOS User | 01/24/06
Third party clients and webmail  Hrothgar - PCLinuxOS User | 01/24/06
Love to pornography beats fear of the worm;at least for many. It?s sad (NT)  Vily Clay | 01/23/06
And you better get used to it, it ain't gona change any time soon.  DonnieBoy | 01/23/06
Why do you thing I?m talking about OS? Maybe human mentality? (NT)  Vily Clay | 01/23/06
The point is, human behaviour is not going to change any time soon. If you  DonnieBoy | 01/24/06
Give it up........  BXLE | 01/24/06
Many of 2-legged creatures behave like 4-legged ones - OS doesn?t help (NT)  Vily Clay | 01/24/06
Donnie get over it,  Hrothgar - PCLinuxOS User | 01/24/06
This is just freaking SAD  mobrien_12@... | 01/23/06
Better get used to user behaviour and make a secure OS.  DonnieBoy | 01/23/06
How would OSX protect people from these types of worms?  toadlife | 01/23/06
In general, MS makes it very, very easy to recieve and execute  DonnieBoy | 01/24/06
It's very easy to receive and execute files on OSX too  toadlife | 01/24/06
Well, I ain' t a Mac expert, but it is Unix based, and would definately be  DonnieBoy | 01/24/06
...  toadlife | 01/24/06
I have been using Linux since the mid-80s, but you are no expert at all if  DonnieBoy | 01/24/06
Sorry, meant to say "Unix" in the last post.  DonnieBoy | 01/24/06
I'm sorry to hear that Donnieboy  toadlife | 01/24/06
Totally sad!  X Marks The Spot | 01/23/06
So that's what happened to all my files:()  svasutin | 01/23/06
Another Intelligence Test  Roger Ramjet | 01/24/06
LOL; maybe this is why the feds asked for all the search engine records!  HypnoToad | 01/24/06
Cue the MSFT apologists  Chad_z | 01/24/06
But, Microsoft makes it so easy to execute email attachments, they also  DonnieBoy | 01/24/06
NOT O/S Design - Misguided Configuration  PMC-CON | 01/24/06
new OS prevents attacks  corticus | 01/24/06
New O/S?  BXLE | 01/24/06
Problems with Outlook design and bad coding have been the cause of MANY  DonnieBoy | 01/24/06
Try Decaf  Hrothgar - PCLinuxOS User | 01/24/06
New OS Order  bwsaloum@... | 01/24/06

What do you think?

SponsoredWhite Papers, Webcasts, and Downloads

advertisement
advertisement
Click Here

SmartPlanet

Click Here