Thread: OT: New Virus?
View Single Post
  #6  
Old August 20th, 2005, 01:11 AM
Thermodyne's Avatar

Thermodyne Thermodyne is offline
Lieutenant Colonel
 
Join Date: Dec 2000
Location: DC Burbs USA
Posts: 1,460
Thanks: 0
Thanked 1 Time in 1 Post
Thermodyne is on a distinguished road
Default Re: OT: New Virus?

Quote:
parabolize said:
Quote:
Thermodyne said:
To put this in perspective, windows get attacked more often because it is targeted more often. If you are a criminal trying to exploit systems, are you going after 2% or 3% of the systems out there? Or are you going to expend your time and effort on something that will attack 90% of the systems out there?

If you are truly good at administering Windows, you have a very small chance of being exploited. If you can load it run dcpromo and join a system, that does not make you truly good. Most users can barely load it, so they get hit.

I have six clients that run Redhat, and keeping them patched is more of a problem than the all of the windows system I work on. And for those of you who don’t already know, Redhat is not free to the business community, but is one of the few Nix distros that is insurable. FreeBSD is free and insurable, so is usually what a Nix network runs on.

Everyone has holes in their software. BIND has holes, Cisco has holes, Nix has holes. They just don’t make the news for the general public. One of the big problems right now is holes in apps. Windows apps can be patched at the same time as the OS. Third party apps usually need to be patched on a per-system basis, which eats up man hours. MS systems can also have driver updates installed along with patches, this make windows more or less three times as easy to manage as the others. One WSUS server to manage and with it you roll out service packs, hot fixes, security patches, application updates and patches, and driver updates. And you only have one system going to the web to get same, not 10’s or 100’s of systems eating up bandwidth. On the client side you control everything from ADDS with GP, this is where no one else can touch MS. But the vast majority of windows networks don’t even use GP, they just don’t know how. And they are the ones who get exploited! I should mention that many of the F5’s who make the news after being exploited are still running NT. NT is not a safe OS in today’s climate. It has nowhere near the security features needed to be called secure today. But the bean counters always hit IT first, because it does not generate black ink on the ledger. So NT has never been replaced.
Your having trouble running yum auto update on 6 computers?
LOL....Try 100 some...We won't take a client with less than 10 systems, no money in it. Only reason we have any nix clients is that we hope to move them to SBS and XP within a year. Usually we have given them a bid for SBS and XP with replacement of any systems more than three years old and a new server. This often forces them to push it into the next year. If they don't switch, we don't re-bid the contract. I do have one nix shop that is owned by a windows client that I would hate to loose. They run nix and apple, and it is sometimes a real PITA. I also have one accounting firm that is still on DOS, every time I need to replace a system it has become a scavenger hunt. The owner has been going to retire and close up next year, for three years now! I also have a string of auto parts stores that just moved to 98 last year. There is only one vender still writing POS software for that industry and they just moved their app to 98. They don't expect to move up to XP until 2008. They only sell it preinstalled on the hardware and the networking is based on null modems. I can't wait for that contract to run out I have a day job, and my partner and the four techs don't really do much with nix. I have had many a weekend or evning ruined by nix

Most of the Nix shops went with it to save money, and then found that they couldn't afford to support it. Or that they couldn't get boxed nix apps that will do what they need to do. They seldom have any licenses and seldom know that they needed any. Most of them got hung up on a low bid that convinced them that they could keep older systems in service by loading nix on them. That usually moves them from an unreliable windows 98 environment into an unreliable nix environment. Old system don't care what's running on them, they die just the same. Lots of sleazy contractors pushing bootleg Nix to small shops these days.
__________________





Think about it
Reply With Quote