Bink.nu Services

Subscribe to our feed 
Alerts 
 


Order Now!

Windows 7 for XP Professionals
Updating Support Skills from XP to Windows 7
by Bink.nu's Raymond Comvalius

Who is online

There are 132 guest(s) online.

There are 0 member(s) online.

Sponsors



Popular Tags
Microsoft: Windows Vista Safer than OS X, Linux
Posted by Steven Bink March 25, 2007 5:29 PM with 10 comment(s)
Filed under:
Microsoft security strategy director Jeff Jones this week published a report comparing the security vulnerability profile for various high-profile operating systems in the 90 days of their existence. Surprisingly, Vista came out in front: Vista had 5 vulnerabilities in its first 90 days, one of them fixed, and one pending with a High severity rating. By comparison, XP had a total of 17 vulnerabilities in its first 90 days, 8 of which were rated High, when it shipped in 2001. The surprises, however, come when you compare the non-Microsoft competition. Mac OS X 10.4, a darling of the press, actually suffered from 20 vulnerabilities in its first 90 days, 8 of which were rated High. Worse, OS X 10.4 still suffered from 17 publicly disclosed but unpatched vulnerabilities at the end of those 90 days. "The data doesn't support [Apple's] marketing," Jones writes. Linux fared even worse: Ubuntu 6.06 suffered from a whopping 71 vulnerabilities in its first 90 days, 27 of those rated High. And there were at least 29 unpatched vulnerabilities in that OS after the 90 day period ended. And so on. You can read the entire report (PDF), and look forward, as I am, to Jones' 6-month and 1-year updates.

Read more short takes from Paul Thurrot at source
Send via e-mail | Submit to Digg | Add to Live Favorites
4934 Views
Source: www.windowsitpro.com

Comments

 

lsproc said:

The thing with Ubuntu and I believe 10.4 is that you are not forced to install any web browsers on your system. In fact, you are not forced to install anything. You could uninstall every package that you will never need, which makes it more secure than Vista. Package not excisting > 100% secure.
March 25, 2007 7:40 PM
 

GP007 said:

uhhh,  what would be the point if you don't install any apps and just the kernel/services?  And even then, you're going to have to update and patch holes in some of those services or libs or even the kernel which for linux is updated often anyways.

If you take out all the apps from Windows also it's very secure also.   If you notice more and more attacks are becoming app specific and less OS specific.   While most of these still attack windows systems, the point is that they're attacking specific programs installed on the systems and less the OS itself.    Look at many of the programs like Symantecs pathetic AV which has had it's nasty share of security problems as a good example.

And also, OSX installs with way more apps then Windows, from browsers to whatever else starts with an i apple can think of.   Now if you can totally uninstall all of those or not, I don't know.  But the fact is, you aren't, you want those apps and that's why they are installed.

March 25, 2007 8:07 PM
 

Andrewft65 said:

Unfortunately most users are not running Vista, their machines requiring more than the O/S upgrading.

Vista is currently secure, mainly because it continually insists on asking questions that most fail to unerstand.

"What you're doing is probably not a good idea. Are you sure you want to do it...  Y / N"

You can't patch against stupidity, if you could, everyone would be running with the latest updates, (whichever O/S) and would not click on every attachment, hyperlink, Yes, and OK button that appears on  screen
March 25, 2007 11:58 PM
 

Cantstandya said:

Sure its safer if you dont mind confirming every command that changes anything....talk about a stupid way to increase security.
March 26, 2007 8:25 AM
 

Zac B said:

Security these days seems very broad. You all crying about UAC, I turned mine off. My security in Vista with UAC off is going to be 100's of percent higher than a steriotipical house wife/husband using Vista with UAC on. Now on the other hand, my security on Ubuntu is going to be greatly reduced compaired to say andrew's. Also, comparativly speaking, my security with everything turned off in Vista is going to be higher than Ubuntu with everything on (if there is anything, i dunno). In other words, everything sucks. Which one sucks the least. I'm sick of this BS argument, it is very similar to trying to compare cellphone service providers. It is more of a personal question than anything. So stay out of my personal business.
March 26, 2007 3:57 PM
 

hubertsvk said:

Zac B:

you think your Vista without UAC is secured how my with UAC ... [:D][:D][:D]
dont be so sure :)

March 26, 2007 5:17 PM
 

alrethe said:

"Vista is currently secure, mainly because it continually insists on asking questions that most fail to understand."

I've been running Vista since beta 2. I hear a lot about UAC asking a million questions and interrupting the user.

My experience has been vastly different than what these people claim.

For me I only see the UAC message box when I run an install which is not very often. When I hit regedit. Or on the odd activex control. So pretty much only when I'm messing with core components of the OS.

I pretty much never see UAC message when I'm browsing the web (IE7), playing games, Watching videos.

If you're the average user I don't think you'll see many UAC messages.

Channel9 has a very good video about what UAC is from the developers that made it. I recommend people that want to know more look it up.

I've very happy witht he changes MS did in Vista.

Most of the UAC = Bad stuff is FUD.
March 26, 2007 5:39 PM
 

GP007 said:

One other good thing about UAC, apps that aren't writen the way they should be and always bring up loads of UAC popups will now force the developer to go back and write the app the way it should've been, lots of things that ask for admin level rights don't even need them.   This in the end will make apps more secure and thus the whole system more secure.
March 26, 2007 6:52 PM
 

johlos said:

GP,

While I agree completely with you about UAC will help devs write better apps, if the Devs (and then the QA folks) follow Zac's lead and disable UAC, then they will miss their poorly written apps that constantly require UAC prompts and the first folks to notice it will be their customers (who will then blame Microsoft).

I tend to have the same experience as alrethe, I've been running with UAC enabled since Beta 2 and it doesn't hinder me either.   I do have an elevated command prompt open for things like "ipconfig /release" "ipconfig /renew" "ipconfig /flushdns" & compmgmt.msc, but most of what I do is via normal methods and I don't typically see UAC either.

The computer at home where I see UAC the most is the one where I also most want to keep it running...The computer my son uses.   Unfortunately, he is most likely to be playing one of 2 games that my wife got at the store and both of them insist on trying to launch by running their 'setup.exe' as the first step of launching the app, so we ALWAYS get UAC prompts on those games.  [:@]   But he's 2.5 years old and I'm not about to let him run on the computer w/o UAC enabled.   I'd LOVE to have a word with the devs behind those games.   [6]

March 26, 2007 10:18 PM
 

GP007 said:

This is the case right now, since you can turn it off.  But look at what they did with DEP, at first it was off or on, and many OEMs turned it off.  But now slowlly MS got OEMs to leave it on, and many users have finally understood that having DEP on helps secure their system more.   So now users are forcing any apps that aren't DEP friendly to become so.

The same thing will happen with UAC, due to the problem with keeping compatibility going, MS can't force changes right from the start, they have to work them in slowlly as with DEP and now with UAC, by giving people the option to turn them off totally and so on.   But later on when the majority of apps are UAC compatible this won't be a problem, and then MS can move on to the next change that needs to get done.

When you aren't held back by compatibility you are free to make drastic changes, but as we've seen, even small ones that break a few apps on Windows is met with a large backlash.

I think this is why the next major version of Windows will also be 64bit only, making this move forces apps to be redone anyways, and thus they can be UAC compatible and more safe, maybe even less bloated one would hope.

March 27, 2007 3:12 AM

About Steven Bink

Founder of Bink.nu
Powered By IIS 7 Powered by ASP.NET
Bink.nu 3.0. Copyright © 1999-2010 Steven Bink. All Rights Reserved.
Microsoft and Microsoft logo's are trademarks of Microsoft Corporation.