|
|
[ Gojko Vujovic @ 23.12.2004. 10:13 ] @
|
| http://news.zdnet.com/2100-1009_22-5501278.html
By Robert Lemos
CNET News.com
December 22, 2004
Unpatched Linux systems are surviving longer on the Internet before
being compromised, according to a report from the Honeynet Project
released this week.
The data, from a dozen networks, showed that the average Linux system
lasts three months before being compromised, a significant increase
from the 72 hours life span of a Linux system in 2001. Unpatched
Windows systems continue to be compromised more quickly, sometimes
within minutes, the Honeynet Project report stated [1].
The results are probably due to two trends, said Lance Spitzner,
president of Honeynet, which develops software for deploying computer
systems as bait for online attackers. The default installations of new
Linux systems are much more secure than previous versions of the
open-source operating system, he said. Secondly, attackers seem to be
much more concentrated on Windows systems than on Linux systems, and
on attempting to fool desktop users, of which the vast majority use
Windows.
"Everybody is focused on Windows," Spitzner said. "There is more money
(for an attacker) to be made on the Windows systems."
The study is the latest data on the relative security of Linux systems
versus Microsoft Windows. Last week, students found dozens of flaws in
software that runs on Linux systems, and a research report stated that
a thorough analysis of the Linux kernel turned up hundreds of flaws.
However, in relative terms, those numbers are low compared to
commercial applications.
Honeynets, a term coined by the project, are networks of computers
that are placed on the Internet with the expectation that they will be
compromised by attackers. The networks are heavily monitored, and the
data is used to research the latest tactics of online miscreants.
While some of the Windows XP systems on the honeynets used for the
latest study were compromised within minutes of being placed on the
Internet, newer versions of the Linux operating system from Red Hat
failed to be compromised by random attacks for more than two months.
Debbie Fry Wilson, director of product management for the security
response center at Microsoft, told CNET News.com that the company's
latest operating system is more secure than the report suggests.
"While it is not clear which version of Windows was used during the
study, we feel that a Windows XP SP2 configuration with the Windows
firewall enabled is the most resilient client operating system
available in the market and can withstand attack much longer," Wilson
said. "We are pleased that the report indicates that two Windows-based
honeynets in Brazil withstood attack for several months. However, we
are not certain that the report provides conclusive data based on a
controlled and scientific study comparing the two operating systems."
Every Windows system compromised during the study had its security
breached by a worm.
However, Spitzner stressed that the Honeynet Project does not have
enough Windows systems deployed to offer meaningful data on that
operating system's security. Moreover, the report does not specify
what version of Windows XP had been running on the systems that had
been compromised and whether any Service Pack upgrades had been
installed.
The study did find that more recent versions of the Linux operating
system lasted longer on the Internet without patching.
[1] http://www.honeynet.org/papers/index.html
|
[ axez @ 23.12.2004. 10:18 ] @
So,whats new...:)
[ degojs @ 23.12.2004. 10:20 ] @
Citat: it is not clear which version of Windows was used during the study
Enough said. [ henrik @ 23.12.2004. 10:23 ] @
Super je to, neka ostane u domenu eksperimenta.
[ degojs @ 23.12.2004. 10:28 ] @
Citat: Unpatched Windows systems
Hehe.. unpatched.. missssim, dobar test sigurnosti.
Citat: Secondly, attackers seem to be much more concentrated on Windows systems than on Linux systems, and on attempting to fool desktop users, of which the vast majority use Windows. Citat: "Everybody is focused on Windows," Spitzner said. "There is more money (for an attacker) to be made on the Windows systems."
Šta mi pričamo mesecima ovde na Advocacy nego baš to :)
Stvarno, axez, what's new? :)
Izgleda da niste ni ti ni Gojko pročitali šta tu piše hehe po običaju momci, po običaju..
[ degojs @ 23.12.2004. 10:34 ] @
Koja komedija :)
Citat: However, Spitzner stressed that the Honeynet Project does not have
enough Windows systems deployed to offer meaningful data on that
operating system's security.
Gojko bre, pa jesi li ti pročitao članak uopšte? :)) Video čovek naslov članka, pa daj copy-paste da uradim... hehehe [ Palma @ 23.12.2004. 11:00 ] @
Ovi Linux-ovci valjda non-stop pretražuju net da bi našli nešto loše o Windozi u pokušaju da nas ubede u ko zna šta. Mislim, koristimo mi MS tehnologije poodavno i tačno znamo šta tu valja a šta ne. Nijedan OS nije savršen, ali činjenica da i dalje ostajemo na Windows platformi govori u prilog tome da je na njoj više dobrih nego loših stvari i tačka. To što ste vi prešli na Linux – šta da vam kažem, zajebali ste se  [ Palma @ 23.12.2004. 11:02 ] @
A evo vam ga i dokaz:
Citat:
we feel that a Windows XP SP2 configuration with the Windows firewall enabled is the most resilient client operating system available in the market and can withstand attack much longer
[ axez @ 23.12.2004. 11:26 ] @
Ma samo vi trolujte..lepo pise da se windows provali u roku od minuta dok su kod Linuxa u pitanju meseci.....:):):)
Dzabe vam sve...hehe
[ degojs @ 23.12.2004. 11:30 ] @
Momci, da vama možda nije problem engleski jezik? :)
Vidi Gojko kako je lepo naslov preveo na naš, a posle članak ništa. Umorili smo se malo, a? Šta je, nema se ni dobar e-s rečnik na tom Ljinuxu?
Axez, čitaj sve šta piše :) Ako može, a ako ne, pa dobro.. OK. Ko ih šiša kad ne pričaju na našem..
[ superbaka @ 23.12.2004. 14:05 ] @
a sto se meni ovako neiskusnom cini da svi linuksovci traze rupe u windows-u umesto da ih traze u Linux-u?
[ Slobodan Milivojevic @ 23.12.2004. 14:47 ] @
Citat: Palma:
To što ste vi prešli na Linux – šta da vam kažem, zajebali ste se
Jel, a po cemu ti to tvrdis da sm se ja zajebo?
I vi vindovsovci niste nista bolji, samo lupate. [ henrik @ 23.12.2004. 23:18 ] @
Baš me zanima da li vi Linuxovci ovde imate stalan posao u nekoj firmi i da li ste nekad u životu imali deadline, pa da vidimo onda kako se u to uklapa kompajliranje kernela.
[ BeastMaster @ 23.12.2004. 23:24 ] @
[ caiser @ 24.12.2004. 08:00 ] @
Citat: henrik: Baš me zanima da li vi Linuxovci ovde imate stalan posao u nekoj firmi i da li ste nekad u životu imali deadline.
Da. I kompajliranje kernela se u to uklapa savrseno, jer nakon kompajliranja sve radi mnogo brze. [ henrik @ 24.12.2004. 09:10 ] @
Aha. Znači, to uradiš samo jednom i onda sve piči godinama bez dodatnih zajebancija, je l da?
[ caiser @ 24.12.2004. 09:27 ] @
Ti si izgleda ipak bistar momak. Sve si shvatio iz prve.
[ henrik @ 24.12.2004. 09:58 ] @
Očito nisam dovoljno bistar, vidiš koji OS koristim. Ali čim odem u penziju, umesto parkića i šaha - konzola bato, pa peglaj!
[ broker @ 24.12.2004. 10:19 ] @
Dobro su ti projekti kad zbog njih mora da se prekompajlira kernel :)
[ degojs @ 24.12.2004. 10:24 ] @
Ma šta će ti kakve aplikacije/projekti, Linux je sam po sebi dovoljna zanimacija.. Čačni malo ovo, mrdni ono, prekompajliraj, skini novu verziju (0.2.11.231b34.88-ALMOST-CURRENT) četvrtog.. peglaj bato, što reče kolega gore.
[ Palma @ 24.12.2004. 10:44 ] @
Edukativni softver  [ degojs @ 24.12.2004. 10:49 ] @
Da, da :)
Dotični mora da je neki doktor.. SVIH nauka :)
[ Slobodan Milivojevic @ 24.12.2004. 15:42 ] @
Prvo, ako neko hoce da radi, to moze i na Linuxu, ako za njegov posao postoje alati, a za vecinu toga i postoje. Niti mora da rekompajlira kernel, niti da svaki cas skida novu verziju svega i svacega.
Ja sam ovaj slack instalirao jos kad se pojavio u verziji 10.0, jenom kompajlirao 2.6.7 kernel, i evo slaka mesecima, nista mu ne fali.
Takao da kod linux-a, bar nema gubljenja vremena na kojekakve gluposti i gazenje sistema svaki cas, cak mi bolje radi nego windoza na malo slabijim masinama (ne malo, nego mnogo bolje)...
[ Gojko Vujovic @ 24.12.2004. 16:46 ] @
Ma ja na advocacy dolazim samo da odradim copy paste necega, pa se vi posle palite 5 stranica oko toga, dinke zakljuca, i za par dana opet .. i tako
A tekst je skroz kritican i prema tom honeypot testu, vidis i sam da dovode u pitanje koliko je merodavan itd. Tako da ne znam sta ti oko toga smeta? No ne trudi se da odgovaras posto ce moja sledeca poseta ovde biti radi novog copy paste.  [ XTeam @ 26.12.2004. 13:55 ] @
E, Gojko, Gojko, koji si ti piroman :-)
Samo ides i palis vatru okolo :-)
[ degojs @ 26.12.2004. 14:00 ] @
Izgleda da je copy-paste naviku preselio i na skriptu za ES. Umesto da lepo gleda liniju po liniju i komentira šta ne valja :)
[ Dragi Tata @ 26.12.2004. 15:03 ] @
Citat: degojs: Umesto da lepo gleda liniju po liniju i komentira šta ne valja :)
A zašto bi on to radio kad milijarde open-source programera budno pregledaju kod i vode računa da nema sigurnosnih propusta? [ impaque @ 05.01.2005. 02:20 ] @
Nemanja, ova ti je dobra. ;)
Doduše, Gojkova poruka je closed source za sve sem za moderatore, kome da pošaljem patch? ;P
Copyright (C) 2001-2024 by www.elitesecurity.org. All rights reserved.
|
