Hell, keep ‘em comin’, I’m making a good living here. 
You people still use Windows?
Yes, rjung. Call us nutty, but many of us prefer not only having the widest selection of software for any OS in the world available at our fingertips, but also being able to build our own computers with exactly the parts we want for half the price of a Mac. Also, I think you know this already, but if everyone was using Macs, they’re be plenty of nasty viruses available for them. But, hey, if security through obscurity is your thing, good for you.
He may be a Linux d00d. Then all those benefits, well except for software, apply to him as well
Nah, he was Mac evangelizing in another thread earlier today.
All those benefits are beginning to also apply to Windows users who are at least 3 years behind the times. And we get to have the wide selection of software too! 
Then don’t go crabbin’ when you get stung by the skript kiddies.
Speaking as a guy with a Masters in computer science and fifteen years working in the field, I don’t think this is the case – UNIX-based operating systems (such as MacOS X, Linux, and Sun Solaris) are much more secure and resilient to rogue programs than anything Microsoft has ever made. To do the kind of damage that Windows users endure would require either root access or administrative permissions to run as sudo, neither of which is easily obtained without the user knowing about it.
But keep believing this myth if it makes you feel better.
Part of the reason ISPs are feeling the burn on this is that a ton of their bandwidth is being taken up as their subscribers’ unpatched machines are being hit left and right with connection attempts due to the Blaster worm and RPC exploit.
Well, I’m not going to butt heads with your education and experience or anything, but, *nix root exploits do exist, do they not? And don’t you think that if 95% of the people in the country were running *nix-based OSes, we’d have a hell of a lot more people looking for those exploits?
Now, I’m not saying that Microsoft is perfect. I’m not saying there’s any reason in the world for Windows 2000 Pro or Windows XP to have a fucking TFTP server in their default installs (not to mention the next-to-useless Messenger service).
I am, however, saying that there are damn good reasons that we continue to put up with it, and all the snide, one-line posts in the world aren’t going to change it. I like playing new games. I like having tons of free software choices. I also like when those free programs are intuitive and pleasant to use, which pretty much rules out most Linux programs I’ve tried.
Most ‘root exploits’ in *nix involve users attempting to get into your box and su to root so they can have full and total control.
It requires an individual effort on the part of the person hacking the box, since it’s fairly rare that the security on two different *nix boxes will be exactly the same.
There are security advantages to *nix in that you can refuse to allow users to compile binaries and force them to use just what you give them, which means that unless a cracker gets a precompiled binary to run in there, if he has execute permission on files you didn’t give to normal users, running a rooting tool will be much more difficult.
You can knock it if you want, but there are definite stability and security reasons that root nameservers and such don’t run Windows.
catsix speaks the truth. Most security issues on *nix machines are from social engineering or from password cracking programs that find idiots with simple passwords. Traditionally a source of problems were from people who never changed the root passwords shipped with the system, but that is pretty much fixed by requiring new passwords.
I’ve been using Unixes for over 20 years and never suffered a minute of downtime from a worm or virus. I didn’t get hit by the Morris worm because I was working at Bell Labs at the time, and he fixed the sendmail bug when he interned there.
In a way I think we owe this guy our thanks. He could have made his code do some really nasty things. A lot of people got a lesson without losing much if anything.
The last time my *nix box went down, it was because the firefighters sprayed water on it while trying to put out the fire in the building that housed the box.
No real point to this post, just must wiping tear from eye express my fondness for a computer that runs for a year or more at a time.
Unix. Rebooting is for adding new hardware.
I gotta pitch in about the latest Linux desktop distros. Due mostly ,I think, to the newer kernels Mandrake,RedHat and Suse are every bit as simple to install and use as Windows. The real strength of Linux is that it’s a “transparent” OS. Nothing is hidden. I do not advocate Linux for everyone but if it had a 20-30% market share Microsoft might be forced to “polish” their software a little more before they put it on the market.
Well… yes, unix is more secure in general because of some architectural reasons. But the real reason it doesn’t get beat up as bad is because Microsoft has the market, and just like far more people write useful software for Microsoft, well far more people write nasty software for Microsoft as well. Same thing with Macintoshes. You want wide market acceptance for your worm? Write for Microsoft.
Unix has had plenty of it’s spills as well over the years, including the recent slapper worm. Apache, OpenSSL, Sendmail – each of these have had plenty of famous vulnerabilities that plenty of Hackers (that’s what I said) have taken advantage of.
Here’s a little experiment for you Bill H. Install a user controllable firewall (I’m a fan of Sygate Pro) that allows you to write your own rules. Then install a browser such as Opera or MozillaFirebird that is not Windows integrated. Block everything except that browser. Use nothing but that browser for 24 hours and then check your traffic/packet logs. Pick a few entries and do a Reverse Lookup. The default XP firewall blocks inbound traffic only and does not even moniter outbound traffic. See the problem yet?
Guess I don’t follow your point, Read_Neck. And I’m pretty steeped in this stuff. Seems you’re pointing out that the XP firewall is less active than a Sygate firewall, which is true. But I really don’t see how that refutes (or even relates) to my point. Wanna elaborate?
Sorry, but “cite”? You can compile binaries on a unix system any number of unusual ways which can’t be prevented, including ‘cat’. The only way you can prevent it is by disallowing all write access to the filesystem, which is just as much an option in windows.
…or a server with a buffer overrun (apache, sendmail, sshd, gnome, ftpd, to name a few). The way people break into windows boxes is not inherently less likely on a unix box. IIS has a long way to go before it catches up with the number of holes sendmail has had over the years, and the holes are due to precisely the same errors. To suggest that unix is immune to this is silly.
Don’t get me wrong. I’m a unix nerd. But I’m an honest unix nerd. If unix were to appear on 90% of the desktop machines in the world, it sure as hell wouldn’t look like the well-secured unix servers you’re used to. It would have shitloads of poorly-tested user-level fluff with security holes in it. And it would have shitloads of script kiddies looking for those holes.
I’d thank a guy who wrote a virus to automatically patch the computer.
Why? What law is there that would mandate a consumer-level UNIX box to have all sorts of insecure crap loading it down?
I remember an interview with the CEO of SouthWest airlines 10 years ago. They asked him, “Why do you keep cutting the sitting space down, reduce the meal quality, etc.?” And he replied, “Because that’s what the people want.” And it was true. People would rather pay a cheaper fare than have a wider seat.
rjung wrote
Well, because that’s what consumers demand. Yes, really.
People want features, and they’re willing to have them at the cost of instability and lack of reliability. Companies that deliver features faster sell products, and companies that deliver stable versions don’t.
Security is merely one of those stability features. Yes, everyone wants it, but they’d rather have new features.
That does seem to be changing somewhat, as security problems are growing more severe recently.