Thread: OT: New Virus?
View Single Post
  #44  
Old August 19th, 2005, 11:40 PM

parabolize parabolize is offline
Second Lieutenant
  
Join Date: Aug 2003
Posts: 412
Thanks: 0
Thanked 0 Times in 0 Posts
parabolize is on a distinguished road
Default Re: OT: New Virus?
Quote:
Thermodyne said:
To put this in perspective, windows get attacked more often because it is targeted more often. If you are a criminal trying to exploit systems, are you going after 2% or 3% of the systems out there? Or are you going to expend your time and effort on something that will attack 90% of the systems out there?

If you are truly good at administering Windows, you have a very small chance of being exploited. If you can load it run dcpromo and join a system, that does not make you truly good. Most users can barely load it, so they get hit.

I have six clients that run Redhat, and keeping them patched is more of a problem than the all of the windows system I work on. And for those of you who don’t already know, Redhat is not free to the business community, but is one of the few Nix distros that is insurable. FreeBSD is free and insurable, so is usually what a Nix network runs on.

Everyone has holes in their software. BIND has holes, Cisco has holes, Nix has holes. They just don’t make the news for the general public. One of the big problems right now is holes in apps. Windows apps can be patched at the same time as the OS. Third party apps usually need to be patched on a per-system basis, which eats up man hours. MS systems can also have driver updates installed along with patches, this make windows more or less three times as easy to manage as the others. One WSUS server to manage and with it you roll out service packs, hot fixes, security patches, application updates and patches, and driver updates. And you only have one system going to the web to get same, not 10’s or 100’s of systems eating up bandwidth. On the client side you control everything from ADDS with GP, this is where no one else can touch MS. But the vast majority of windows networks don’t even use GP, they just don’t know how. And they are the ones who get exploited! I should mention that many of the F5’s who make the news after being exploited are still running NT. NT is not a safe OS in today’s climate. It has nowhere near the security features needed to be called secure today. But the bean counters always hit IT first, because it does not generate black ink on the ledger. So NT has never been replaced.
Your having trouble running yum auto update on 6 computers?
__________________
King of the Hill League
Reply With Quote