Bearded One,
I would agree with you on your points. Linux/Unix can be more secure than a Windows system IF the operator/user of the OS knows their stuff AND keeps on top of all the latest hacks. Unix also tends to be more venerable than Windows/NT in another aspect - because the Internet and all the Unix derivatives are completely based on the purest uses of TCP/IP - from top to bottom in the stack - Unix also tends to be a favorite target for many hackers. Y? Because they know so much about the open standards and the TCP/IP functions and how almost every aspect of Unix (specially Linux) works. Since Linux has nothing to hide, it gives the hackers more knowledge on avenues of attack.
MSFT's Windows OSes are not easy hacker prey because the OS is so open and easy to understand, its easy prey because so many people around the world use it and many have stumbled over or found so many of MSFT's poor and inexperienced security mistakes. Also, Windows is a General Purpose OS and therefore it provides more opportunities for attack. One of the aspects that makes Windows a harder hack than Unix is that it is a proprietary OS and there are many dark sides under their code (as we are finding out) that havent been admitted to or shown. Since the hackers are not openly privy to since inner core of the Windows code, they have to dig into it and research the core themselves. Windows servers are also not based on true TCP/IP protocols to its core (it uses NetBios), but thats not a big problem specially with simplistic protocols like NetBios.
An OS like NetWare is a special purpose OS, uses hard to write NLM bolt-ons, is not used as a deskyop OS, is not as pervasive in numbers, and until recently, has not used TCP/IP as a native component of its OS core functionality. If you look at the hack lists on sites like www.securityfocus.com you will see there are almost no hacks of the NetWare OS.
The Problem for Novell - with NetWare 5 natively based on TCP/IP, Novell's success in opening up and simplify the development platform on NetWare 5, the use of NetWare specifically for the Internet (i.e. BorderManager, ICS, WebSphere, etc.), and the increase popularity of NDS, the hackers will start taking notice of NetWare as an attractive hacking target. Many of these hackers like the challenge and NetWare has always given them a challenge.
Toy |
