[Date Prev][Date Next][Thread Prev][Thread Next][Date Index][Thread Index]
Re: whats this?
On Sun, Aug 05, 2001, Reuven M. Lerner wrote about "Re: whats this?":
> Nadav> The possibilities for mayhem are endless!
>
> Indeed -- and the scenarios that you're suggesting are only the
> beginning, I'm afraid.
>
> On the bright side, it'll now be easier for me to sell clients on the
> benefits of a Unix system...
Unfortunately, there's not much truth to that... Every Unix or Linux vendor
(as far as I know) had a root exploit last year. The fact that nobody wrote
a worm as weird as Code Red II (it is weird in that it sets up an unprotected
backdoor - why not a backdoor that needs a private key to get in??) doesn't
prove that Unix or Linux is inherently more secure than Windows. Someone
could have just as easily written a worm that takes down all x86 linux
hosts running, say, the broken version of bind (hmm, didn't the Ramen worm
actually do that?!). I'm seeing probes on my machine all the time for the lpd,
rpc, named, and other ports - all looking for Linux (or other Unix) exploits.
--
Nadav Har'El | Sunday, Aug 5 2001, 17 Av 5761
nyh@math.technion.ac.il |-----------------------------------------
Phone: +972-53-245868, ICQ 13349191 |In Fortran, God is real unless declared
http://nadav.harel.org.il |an integer.
=================================================================
To unsubscribe, send mail to linux-il-request@linux.org.il with
the word "unsubscribe" in the message body, e.g., run the command
echo unsubscribe | mail linux-il-request@linux.org.il