Security threats Toolkit
Story: Red Hat disputes CERT vulnerability figures
Posted by: Mitch 74 (Thursday 23 February 2006, 5:03 PM)
With the researchers focus explained, and considering that all Linux softwares have direct counterparts (with same codebase even) on Windows, it somewhat makes sense: since all users and all apps have admin rights by default on a Windows system, you don't need to escalate user rights. Thus, to access a Windows system, you merely gotta have access to it - there are 800 ways to breach into a Windows system from outside.
Not so in Unix/Linux: breaching a system from outside requires you to then escalate your privileges to root level, otherwise it is almost useless.
Meaning:
- in Windows, there were 800 ways to access a system from outside
- in *nix, many less
- once you get access a Windows system, you have full control over it : no breach required (infinity of vulnerabilities)
- in desktop *nix, you then have 2800 potential ways to escalate your rights, depending on what softwares are installed.
In Windows, OS patches and app patches are independant : user needs to update each and every software manually.
In *Nix/Linux, most distributions update both OS and installed applications as a whole.
Full Talkback thread
Story: Red Hat disputes CERT vulnerability figures
-
Duh! Andre T. -
"The two figures are not representative of today's... LaFong
-
"Which two major OS platforms would those be?... Anonymous -
I would like to comment on misleading tems used in... Ruda M.
-
"Windows alone accounted for more than 25% of all... Olavi Petri
-
With the researchers focus explained, and con... Mitch 74
