All Things Microsoft > Microsoft Software

Interesting...Windows security flaws < UNIX's?

<< < (3/4) > >>

toadlife:

--- Quote from: H_TeXMeX_H ---How about this ... get a 1337 haxxor and ask him which system is easier to hack Window$ or Linux (when both are "properly configured") ... I'm betting on Window$. Or put them to the test, see which one is compromised faster, easier.
--- End quote ---

Well I've read on more than one occassion from security professionals that in  *nix OS's, it is generally easier to escalate priviledges than in Windows.


How would this "test" of yours work anyhow?

H_TeXMeX_H:
I dunno, take two identical computers, on one install Window$ on the other Linux, then beef them both up security-wise (harden them), and then get a group of 1337 haxxors and have them hack in remotely. As proof of entry they leave a text document behind or alter some part of the system. Then see which one takes longer to hack.

toadlife:

--- Quote from: H_TeXMeX_H ---I dunno, take two identical computers, on one install Window$ on the other Linux, then beef them both up security-wise (harden them), and then get a group of 1337 haxxors and have them hack in remotely. As proof of entry they leave a text document behind or alter some part of the system. Then see which one takes longer to hack.
--- End quote ---

Ok. If "hardening" meant, both would have firewalls enabled then nobody would ever get into either system. If it meant not enabling a firewall, but disabling all services, then nobody would ever get into either system. In order for the systems to be hackable at all, they would have to be running some sort of daemon.

How about IIS6 vs Apache?  If it were that, my money would be on Windows/IIS6.

H_TeXMeX_H:
Come on ... I'm sure a real 1337 haxxor can hack anything :D

piratePenguin:

--- Quote from: toadlife ---Ok. If "hardening" meant, both would have firewalls enabled then nobody would ever get into either system. If it meant not enabling a firewall, but disabling all services, then nobody would ever get into either system. In order for the systems to be hackable at all, they would have to be running some sort of daemon.

How about IIS6 vs Apache?  If it were that, my money would be on Windows/IIS6.
--- End quote ---
You mean "(Windows Server 2003 or Windows XP Professional x64 Edition) and IIS6", seeing as that's all II6 runs on.

Navigation

[0] Message Index

[#] Next page

[*] Previous page

Go to full version