Language Selection

English French German Italian Portuguese Spanish

Security: Unpatched and Doing Fine?

Filed under
Linux

It's been a year since the Honeynet project published the results of their study, which concluded that Linux systems can last much longer than Windows systems unpatched on the Internet. I am sure that to some extent this remains true, but I wonder when I see things such as statistics that claim the highest percentage of attacks are seen on Linux systems and the number two reason they are attacked is because they are unpatched.

This has long been a sore spot for me in the Linux world, not because Linux systems are "unsafe", but because patching (not just for enterprises, but even for home users) on Linux is a pain. Some versions are easier than others, but simply trying to get the patches and ensure that you don't break anything is usually a challenge. And I don't see it getting easier, either.

Just to prove my point, I took a gander at some patching methods for several different platforms:

Full Story.

*yawn*

I just read it...This is just a pointless whinge article. (And it smells like someone was hired by Microsoft to write this nonsense...Either that, or they really had no frigging clue to begin with).

In fact, its a non-issue. You pick a distro, you use it, you learn how to update it, you keep it secure. That's it.

Its a non-issue unless you keep moving distro to distro. If you stick with the one distro from the beginning, you'll do fine.

How hard is it to update "easy to use" distros like Ubuntu, OpenSUSE, etc? Its all clicking with the mouse! (Apparently, according to the article, that is still too hard. If that's hard, then how do people handle Windows Update via the "manually select patches to install" way?)

The article has very little substance, and doesn't offer anything but FUD tones to scare people about maintaining Linux systems.

Even for Gentoo...Is it hard to teach a newbie to type: emerge ?

1000 to 1 the author of that article has never touched a Linux system in their lives...Let alone write about it.

Comment viewing options

Select your preferred way to display the comments and click "Save settings" to activate your changes.

More in Tux Machines

today's leftovers

Leftovers: OSS and Sharing

Security Leftovers

  • Chrome vulnerability lets attackers steal movies from streaming services
    A significant security vulnerability in Google technology that is supposed to protect videos streamed via Google Chrome has been discovered by researchers from the Ben-Gurion University of the Negev Cyber Security Research Center (CSRC) in collaboration with a security researcher from Telekom Innovation Laboratories in Berlin, Germany.
  • Large botnet of CCTV devices knock the snot out of jewelry website
    Researchers have encountered a denial-of-service botnet that's made up of more than 25,000 Internet-connected closed circuit TV devices. The researchers with Security firm Sucuri came across the malicious network while defending a small brick-and-mortar jewelry shop against a distributed denial-of-service attack. The unnamed site was choking on an assault that delivered almost 35,000 HTTP requests per second, making it unreachable to legitimate users. When Sucuri used a network addressing and routing system known as Anycast to neutralize the attack, the assailants increased the number of HTTP requests to 50,000 per second.
  • Study finds Password Misuse in Hospitals a Steaming Hot Mess
    Hospitals are pretty hygienic places – except when it comes to passwords, it seems. That’s the conclusion of a recent study by researchers at Dartmouth College, the University of Pennsylvania and USC, which found that efforts to circumvent password protections are “endemic” in healthcare environments and mostly go unnoticed by hospital IT staff. The report describes what can only be described as wholesale abandonment of security best practices at hospitals and other clinical environments – with the bad behavior being driven by necessity rather than malice.
  • Why are hackers increasingly targeting the healthcare industry?
    Cyber-attacks in the healthcare environment are on the rise, with recent research suggesting that critical healthcare systems could be vulnerable to attack. In general, the healthcare industry is proving lucrative for cybercriminals because medical data can be used in multiple ways, for example fraud or identify theft. This personal data often contains information regarding a patient’s medical history, which could be used in targeted spear-phishing attacks.
  • Making the internet more secure
  • Beyond Monocultures
  • Dodging Raindrops Escaping the Public Cloud