full-disclosure-uk May 2007 archive
Main Archive Page > Month Archives  > full-disclosure-uk archives
full-disclosure-uk: Re: [Full-disclosure] Linux big bang theory.

Re: [Full-disclosure] Linux big bang theory....

From: Kradorex Xeron <admin_at_nospam>
Date: Mon May 14 2007 - 17:24:22 GMT
To: full-disclosure@lists.grok.org.uk


On Monday 14 May 2007 01:46, Just1n T1mberlake wrote:
> > scott wrote:
> > > Evidently you need more experience in security research:
> > >> http://projects.info-pull.com/moab/
> > >
> > > I believe this should dispel your myth about OSX's invulnerability.
> > > Really...did you honestly believe it was invincible?
> > >
> > > Regards
>
> Of course no operating system is invincible when you have full access
> to the machine. You could just delete all of the files yourself.
> OSX isn't using all of the tricks like windows does to try and hide
> executables throughout dlls and other such files. Ever heard of dll
> hell? No wonder these machines are broken into so often.
> The point is what would you rather have 1000 windows machines 1000
> linux machines or 1000 OSX machines? If you wanted to not be infected
> I'd be taking the OSX machines for sure, otherwise if you want to get
> these kind of kernel rootkit tricks of JOquendo or something like
> rhosts for your life then you would choose one of the linux
> distributions.
> What next are you going to virtualise this and run them all on the
> same host? Frankly, it really doesnt matter what your guest server is
> running if your host is broken :-)
>

Your points are moot.

The only reason OSX is "so good" security wise, is because the OS doesn't give open administrator access to the users, preventing the dumbness of the uninteligent users from screwing up the OS in the conventional sense, I bet the instant you introduce "administrative privs" into OSX, you'd get security breaches galore.

To put it bluntly: OSX Treats it's users like they're in a playpen, trying not to expose the users to the "real world"

It's the DUMB USERS who are the security risks. NOT the OS the majority of the time. If you left a Windows machine running, with a competent user, it will have a lower risk of becoming infected/rooted than if you parked a clueless user in front of the machine.

Same with Linux, park a stupid superuser in front of the machine, you will of coruse you'll get stupid results. However, if you get a competent superuser that only uses "root" for admin tasks only and doesn't do anything exparamental under root on a production machine, as well as not give users any more permission than they need, you'd be set.

So what are we trying to do? protect the OS from what? or protect the users from making idiotic decisions that will screw up their boxes?

Remember folks: Computers only operate as good as those who operate them.

> --
> Winning is a habit. Unfortunately, so is losing." - Vincent Lombardi



Full-Disclosure - We believe in it.
Charter: http://lists.grok.org.uk/full-disclosure-charter.html Hosted and sponsored by Secunia - http://secunia.com/