Language Selection

English French German Italian Portuguese Spanish

Linux Muscles Into M$'s Space

Filed under
Linux
Microsoft

Is Linux a better choice for business than, say, a proprietary operating system such as Microsoft Windows? The debate, full of passion and conviction, rages on both sides of this issue. Over the past several years, Linux has elevated itself as a respectable competitor despite Microsoft's dominance in the operating systems market. Linux is used extensively in today's business operating platforms, in Web servers, the Domain Name System, FTP, e-mail, firewalls, Web hosting, network monitoring and desktop applications, for example. Some form of Linux is used in nearly 80 percent of companies today. Most of them deploy it from a server level, and interest in desktop functionality is growing. The rapid migration of Linux inside global businesses and government agencies is likely related to the increase in quality, security and cost-effectiveness that Linux provides.

Of course, there are arguments from both sides. But when you compare Linux and Windows applications feature for feature, there is very little, if anything, that Microsoft has that Linux hasn't yet perfected.

Security and reliability are, of course, another concern. How can migrating businesses be sure that the security and reliability of their networks will, at the very least, stay intact? Looking at some facts and figures provides a good start. In the past few years, Microsoft has experienced near-catastrophic exploitations with the MyDoom, Nimda and MS Blaster worms. These system exploitations affected countless users and cost individuals, corporations and government agencies millions of dollars in damages and downtime. Since then, Microsoft has had to account for the inadvertent release of part of its sanctified source code, as well as the much-publicized Internet Explorer vulnerabilities that have forced many users to change their preferred Web browsers. In response, Microsoft attempted to heighten security on all applications to prevent further incidents.

It's not as if Linux hasn't also had its share of vulnerabilities. The notable difference, though, is in the initial discovery and patching of existing vulnerabilities. Vulnerabilities within a code are, for the most part, inevitable, but users will find with Linux that vulnerabilities are identified and patches are released quickly, in many cases before users are even aware that there's a problem. Moreover, the Linux community, as opposed to proprietary vendors, provides innate security enhancements and affords a substantial number of resources from developers in the community to ensure that even seemingly insignificant security flaws are properly addressed.

Full Article.

More in Tux Machines

Games: Ostriv, Back to Bed, EVERSPACE, Hiveswap: Act 1

Openwashing and Microsoft FUD

BlueBorne Vulnerability Is Patched in All Supported Ubuntu Releases, Update Now

Canonical released today new kernel updates for all of its supported Ubuntu Linux releases, patching recently discovered security vulnerabilities, including the infamous BlueBorne that exposes billions of Bluetooth devices. The BlueBorne vulnerability (CVE-2017-1000251) appears to affect all supported Ubuntu versions, including Ubuntu 17.04 (Zesty Zapus), Ubuntu 16.04 LTS (Xenial Xerus) up to 16.04.3, Ubuntu 14.04 LTS (Trusty Tahr) up to 14.04.5, and Ubuntu 12.04 LTS (Precise Pangolin) up to 12.04.5. Read more

Security: Updates, 2017 Linux Security Summit, Software Updates for Embedded Linux and More

  • Security updates for Tuesday
  • The 2017 Linux Security Summit
    The past Thursday and Friday was the 2017 Linux Security Summit, and once again I think it was a great success. A round of thanks to James Morris for leading the effort, the program committee for selecting a solid set of talks (we saw a big increase in submissions this year), the presenters, the attendees, the Linux Foundation, and our sponsor - thank you all! Unfortunately we don't have recordings of the talks, but I've included my notes on each of the presentations below. I've also included links to the slides, but not all of the slides were available at the time of writing; check the LSS 2017 slide archive for updates.
  • Key Considerations for Software Updates for Embedded Linux and IoT
    The Mirai botnet attack that enslaved poorly secured connected embedded devices is yet another tangible example of the importance of security before bringing your embedded devices online. A new strain of Mirai has caused network outages to about a million Deutsche Telekom customers due to poorly secured routers. Many of these embedded devices run a variant of embedded Linux; typically, the distribution size is around 16MB today. Unfortunately, the Linux kernel, although very widely used, is far from immune to critical security vulnerabilities as well. In fact, in a presentation at Linux Security Summit 2016, Kees Cook highlighted two examples of critical security vulnerabilities in the Linux kernel: one being present in kernel versions from 2.6.1 all the way to 3.15, the other from 3.4 to 3.14. He also showed that a myriad of high severity vulnerabilities are continuously being found and addressed—more than 30 in his data set.
  • APNIC-sponsored proposal could vastly improve DNS resilience against DDoS