@honeymonster
"A Linux user can be member of a single group only. A file can have a single owner and belong to single group only"
false - you can add secondary group membership "useradd -G {group1, group2, etc}
"Sure, you can bolt on ACLs on Linux. But hardly anyone does it."
I set ACLs on ALL our production servers. It is no simple task so I am not suprised a typical windows user will be confused and not bother to config.
"If you set up a draconian policy users will just change a few components and will thus use predictable/guessable passwords."
This is blatently false. Try reading your pam.d man pages on enforcing pw length and complexity. Ovbiously you have no experience with this. You probably have not heard of SecurID or Centrify either.
"Again, Unix and Linux lacks fine-grained security."
If you ignore ACLs, then yes.
"The Linux solution? Setuid and setgid. Two swiss cheese horrors which are open invitations to hackers!"
Selinux + ACL address these issues. Oh wait, not to a typical windows user, my bad.
"Linux (the kernel) requires many more patches than Windows."
The actual number of vuln's will vary with your distro's version, a vuln count is not a risk assesment. Go ahead and beat the dead horse if you like, the "get the facts" campaign didn't really work well with technically knowledgeable staff IMHO
"This is actually a bit unfair as the Vista numbers include..."
see above
Discussion on:
Message 2 of 1
The best of ZDNet, delivered
ZDNet Newsletters
Get the best of ZDNet delivered straight to your inbox
