Originally posted by Skuzzy
Ok Vulcan, I cannot let this one pass.
Are you talking about a 'default' configuration of the above? If so, then it would be dependent on the distro you use, but generally, the default configuration lacks a lot on the security side of Linux.
However, that is easily addressable by the user, unlike Windows, which normally requires MS act on it to fix it.
Back to Linux, or any UNIX variant for that matter.
HTTP: Server or client?
Mail: Server of client?
Database: MySQL is pretty damn secure and ships with several distros. The recent CERT advisory for MySQL had to do with admins not setting the MySQL root password or setting it to something trivial.
Most security problems with UNIX's can be traced back to a poor or sloppy job of configuring it. Not saying you are wrong Vulcan, but you were being rather general.
Both the default and the current builds. Most of my job these days is dealing with Application layer security stuff on the network, so I get exposed to a lot vunerability and exploit lists and for every M$ hole there is just as many Linux/Unix holes.
I'm also removed from the desktop O/S when it comes the security. I don't care if its Windows, OS X, Linux, or Unix.
I'm not pro M$. My favourite OS every was AmigaDOS, it was way ahead of its time. But I do think Linux is overrated, and the very nature of its diluted control and standardisation will prevent becoming a mainstream desktop OS. It certainly is good for application specific servers where you don't need the GUI crap.
I do however get tired of the various zealots from the OS X and Linux camp who happily inhale copious amounts of BS smoke and believe the world would be better without M$.
