屋顶上的木帷幕

海鸥之所以追着渔船飞,是因为它们认为会有沙丁鱼抛向大海 - Eric Cantona, 1995
随笔 - 146, 评论 - 3168, 引用 - 56

导航

工具

关于


标签

每月存档

广告



访客
 
Linux were attacked more often in January

一则新闻:Linux servers 'attacked more often'

文章提到,一个英国的安全公司的对今年一月份发生安全攻击做了调查,在成功的安全攻击中,有约80%(共计13,654次)是成功攻击了Linux服务器,只有2,005次是成功的攻击了Windows服务器。

文章的基调是比较中立的,文章分析道:

However, the sharp rise in Linux breaches probably reflects a lack of training and deployment expertise rather than inherent security problems within Linux, mi2g officials suggested.

它认为针对Linux的安全攻击成功次数上升是因为很多采用了Linux的公司并未正确的配置、管理Linux。文章认为问题出在他们的网管而不是Linux本身——但Windows上的安全问题又何尝不是这样!去年一月份的SQL Server蠕虫,还有去年7月针对RPC的蠕虫,其攻击的安全漏洞都是微软早就发布过公告的,只是很多人都没有打补丁。

这再次印证了安全学方面的一个基本观点:安全问题首先是人的问题,然后才是技术的问题。世界上没有绝对安全的系统,如果疏于管理、没有正确配置,就算是FreeBSD也照样会被攻击、入侵。就像这片新闻后面的网友评论所说的:

From my experience, GNU/Linux systems are more likely to be attacked. It's less secure than Windows when unpatched and more secure when patched. ... So many people experiment with GNU/Linux, turning on every service and leaving them unsecured and unpatched.

从这个角度来说,无论是Linux还是Windows,在安全方面最大的问题都不是产品本身,而是用的人有没有实践一些基本的安全原则,例如“Default to a secure mode”、“Apply the principle of least privilege”、注意经常打补丁等。补丁是一定要打的,并不只是Windows才有补丁。Linux照样需要打补丁,照样会有安全漏洞。 那些以为只要把Windows换成Linux,就可以一劳永逸高枕无忧的人,大错特错了。

随贴广告(测试期)
相关文章

打印 | 张贴于 2004-03-03 15:53:00 | Tag:Cool Stuffs

 

留言反馈

回复: Linux were attacked more often in January 编辑
嗯....今天試了一下,還蠻好用的。

最近要對某個系統作 security testing,主要是 MS 環境,目前先找到這個工具用用。

你有沒有這方面的經驗還是建議......

2004-03-09 18:04:00 | [匿名用户:oldsidney]
回复: Linux were attacked more often in January 编辑
:)

Baseline已经有段时间了。

相当不错的,很实用。对于我这种对安全没太多概念的人,就需要这种有些傻瓜的工具。

至少:我知道有这么一台托管在公共网机房里的服务器,以前曾经被人拿走了admin账号。重装后,定期用baseline查一遍,补好所有发现的问题,后来就一直平安无事。

很不错的,对于入门级别的人,立竿见影。
2004-03-09 10:01:00 | [匿名用户:mvm]
回复: Linux were attacked more often in January 编辑
最近看到 MS 出了一個 security tool - Microsoft Baseline Security Analyzer ,有沒有用過呀。
2004-03-09 09:57:00 | [匿名用户:oldsidney]
回复: Linux were attacked more often in January 编辑
只听说过apache比较多 :)
2004-03-04 14:41:00 | [匿名用户:rIPPER]
回复: Linux were attacked more often in January 编辑
世界上是LINUX的服务器多还是WINDOWS的服务器多?
2004-03-04 13:48:00 | [匿名用户:cony]
回复: Linux were attacked more often in January 编辑
谢谢zhengyun_ustc

有句话:“屁股决定脑袋”。这句话是有一定道理的。

2004-03-04 13:14:00 | [匿名用户:mvm]
回复: Linux were attacked more often in January 编辑
许多攻击Windows服务器不安全的人,他们的背景有人揣测过吗?
我相信相当一部分是SUN的人,看问题--也不公正。。。

这个世界上有谁敢说自己看问题 没有立场问题,不偏不正的?
大家都是受利益驱动的。。。
2004-03-04 12:46:00 | [匿名用户:zhengyun_ustc]
回复: Linux were attacked more often in January 编辑
以前用过Mozilla也是一样,Firefox这个问题也没什么区别,应该是Gecko的问题,与用什么Shell/UI关系不大。
2004-03-03 19:01:00 | [匿名用户:Daily Linux User]
回复: Linux were attacked more often in January 编辑
我还揍是Firefox !!!!!
2004-03-03 18:53:00 | [匿名用户:Daily Linux User]
回复: Linux were attacked more often in January 编辑
mvm 毕竟是微软的人。看问题--不公正。。
2004-03-03 18:52:00 | [匿名用户:snoopy]
回复: Linux were attacked more often in January 编辑
试试firebird看 :)
2004-03-03 18:03:00 | [匿名用户:rIPPER]
回复: Linux were attacked more often in January 编辑
mozilla基本是一bug ware ,和ie有得一比:)
2004-03-03 18:03:00 | [匿名用户:rIPPER]
回复: Linux were attacked more often in January 编辑
俺们一般不叫补丁而是把版本号微升一个数然后升级
Linux Kernel和Apache都是动不动一个新版本 呵呵

而且Linux只能管到核心, 至于上面提供其它服务的又是什么人写的七七八八的东西, 那就天晓得了 呵呵

不过真要批判开源软件的话,俺现在就有个令人气愤的例子,Mozilla的内存管理太差啦,大图片多点就发傻,刚才我点上面思归的链接,狂傻了一阵之后竟然XWin重启啦,Doh !!!!!

改用Konquerer就啥事都没有了,呵呵
2004-03-03 17:13:00 | [匿名用户:Daily Linux User]
回复: Linux were attacked more often in January 编辑
呵呵,没有闲人,社会怎么能进步?
2004-03-03 16:37:00 | [匿名用户:陈锐]
回复: Linux were attacked more often in January 编辑
9494,装了IDS,不看日志,和没装一样
2004-03-03 15:55:00 | [匿名用户:rIPPER]
博客主人设置本博客不允许匿名用户发表言论,请登录后再试

Powered by: Joycode MVC Blogger System

Copyright © 屋顶上的木帷幕