Security comparisons Linux (Unix)-NT?

Giorgos Keramidas keramida at ceid.upatras.gr
Thu Nov 25 16:42:12 EET 1999


angelos at unix.gr writes:

> Theodore J. Soldatos <theodore at eexi.gr> wrote:
> > Psaxno gia arthra pou na sygrinoun to security metaksy Unix genikotera (kai
> > Linux eidikotera) kai NT, kathos kai arthra pou na aforoun sygekrimenes
> > periptoseis opou to ena h to allo antikatastathike gia logous security (se
> > etaireies, organismous klp). 
> 
> > Kapoios egrapse se arthro sxetika sovarou episthmonikou periodikou
> > oti "... to megalytero provlhma asfaleias sto Internet einai oti oi
> > perissoteroi servers trexoun Unix kai oxi kapoio asfales OS, opos px
> > Windows NT". Den peisthke gia to antitheto sthn thlefonikh synomilia
> > pou eixame kai psaxno gia facts... :-) 

Edw uparxei ena sobaro flaw stin epixeirnmatologia tou tupou.

((( protasi A )))
Estw oti to Unix dev einai asfales.
  + flaw 1: den blepo references, stoixeia, kati pou na to apodeiknuei
            auto.
  + flaw 2: to unix den einai 1 leitourgiko, ektos ki an ennoei to AT&T
            unix - to opoio, omologoumenos, den einai toso asfales oso
            ta windows NT.

((( protasi B )))
Tote ta Windows NT einai pio asfali.
  + flaw 3: pws apo tin protasi A pame stin protasi B.  to oti to unix
	    den einai asfales, den simainei automata oti ta NT einai.
  + flaw 4: den blepo stoixeia oute edo episis.  'pio' asfali ta NT apo
	    poio unix, poia version twn NT, poia morfn kai version tou
	    unix?

me 4 diaforetika logika lathi stin protasi tou, de nomizw o arthrografos 
na mporei na sou ferei kai polles antirrhseis otan tou peis oti apla
'leei teleiws asthrixtes kai asunartites blakeies'.  Apla min tou to
peis etsi giati, apo ti mia den einai eugeniko, ki apo tin alli den
exeis tipota na kerdiseis apo mia tetoia kontra, eidika ksekinontas se
toso asxnmo klima.

> poly aplo , pigaineis stp cert.org, kai psaxneis gia security alerts
> kai warnings apishs koitazeis kai sto ntbugrtaq.com .
> 
> Prostheteis synola kai bgazeis symperasmata.

Arkei katehe sunolo na einai ena weighted-average, alla to problima
einai panta sto na upologiseis ta bari gia to average.  Ena alert
p.x. gia to tade flaw pou exei to diald tou linux isws kai na min einai
to idio sobaro me ena bug sto tcp stack twn NT, alla pali ta panta einai
analoga me to ti kanei o kathenas.

P.x. emena to diald karfi de mou kaigetai, giati apla de to xrhsimopoiw.
Alla to tcp stack mou, kamia fora mou einai xrhsimo :)

Alloi mporei na xrhsimopoioun mono uucp, opote to tcp stack na tous
einai apo adiaforo ews kai enoxlitiko.

An uparxei enas sobaros logos na protimisei kaneis to Linux apo ta NT,
opws polles fores exei eipothei einai oti to prwto einai 'anoixto' kai
otan bgei to flaw/bug/exploit sinithos den argei na bgei kai kati pou
eite to diorthonei, eite to apenergopoiei proswrina.

Kai pistepse me, oi IT managers (autoi pou exo dei egw dnladn), to CERT
spania to kseroun estw kai san onoma.  An miliseis stous texnikous isws
na exeis elpida na to katalaboun.  Alla se ena manager, to logo tis M$
exei merikes fores pio megali aksia apo opoiodnpote advisory tou CERT,
oxi giati einai xazos o anthropos, oxi giati den thelei na se katalabei,
apla giati h douleia tou pote den itan na diabasei ta alerts kai
advisories, kai akribws gi' auto pote den to ekane :)

-- 
Giorgos Keramidas, <keramida at ceid.upatras.gr>
"What we have to learn to do, we learn by doing." [Aristotle]
--
====================================================================
Gia boithia (h na diagrafhte) e-mail sto majordomo at hellug.gr
Ta archives tis listas einai sto http://lists.hellug.gr/archives
prin steilete kapoia erothsh psakte mipos exei hdh apanththei.
Gia opoiodipote problima stilte e-mail ston owner-linux-greek-users at hellug.gr
====================================================================



More information about the Linux-greek-users mailing list