Jump to content
xisto Community
RemoteConnection

Which One Is Better As A Secure Os?

Which one is better as a secure OS? Vote here!  

14 members have voted

You do not have permission to vote in this poll, or see the poll results. Please sign in or register to vote in this poll.

Recommended Posts

While Windows CAN be secure (with the service packs, firewalls, and all that), I honestly don't consider it that secure. Windows is just used SO much that it's the main targeted OS. Linux has many people fixing it (this could be a good and a bad thing), so they may actually be able to release a bug fix faster than what Microsoft can. Also, I'm sure just about any OS will be hacked or something, it's just Windows would be more of a target. Seeing as Linux is getting popular with web servers, I wouldn't be surprised if they started getting hacked more often. However, overall, I'd say Linux is better.

Share this post


Link to post
Share on other sites

well let see my IT Master idea:"At the beggining windows company started to have better user interface than the others , as you can see most users are familiar with it, but windows didn't start it from the base, but linux tried on security at the first then went on user interface "what's your idea?

Share this post


Link to post
Share on other sites

Linux is about being secure, but if a user is running it whilst being the admin root they will be less secure. FreeBSD, Solaris, Mac OS X and those other operating systems like that were also made to be secure.Windows was more about being made to be user friendly than secure and that is why it is so insecure. Windows Vista will be an improvement when it comes to security, but not enough of one I expect.

Share this post


Link to post
Share on other sites

I think lenux will be more of a secure Os...

172129[/snapback]


I agree any flavour of Linux is more secure than Windows.

 

Windows isnt very vunerable .

LOL :)

Now we have to redefine Vulnerability.

 

Anyways, The Linux Kernel based OS are more secure than Windows. And with some proper configuration they are virtually unbreakable.

Share this post


Link to post
Share on other sites

Depends on the Administrator and current trends. As more people start to drift away from Windows, more crackers will drift away and start targeting other OS'es. And if your not a complete idiot and make smart decsions, you should be ok. I personally use Linux for experimenting and such, but mainly Windows for serious use. But gosh, typing commands sure feels rewarding. But I would have to say I'd rather double click a few times than having to spend two hours searching for libraries for a few small programs, but thats offtopic now isn't it? :)

Share this post


Link to post
Share on other sites

I think Windows 2000 and XP are among the more secure operating systems out there, providing that the user knows how to use it effectively. Of course, if one downloads one too many things to install on the computer, the computer may slow down a bit and may be threatened by what may be contained in the software. Anyway...I digress. Apart from the Windows OS I just mentioned, I heard a lot of raves about Linux, too. Thing is, I haven't used it yet to give an opinion on it.

Share this post


Link to post
Share on other sites

---- Well , Friends sent their comments about OSes security, but after all If you selected your perfered OS , what will you do for securing it ?

Well, I've voted for Linux. So here are tips on how to secure it further:

 

Physical Security:

Password protect the lilo(OR GRUB OR other bootloader) prompt.

Disabl crtl+alt+del shutdowns by any other user than root

use su, with securety settings

Disable root login

 

 

Disable following daemons(OR change default settings):

Sendmail

Bind

NFS & Samba

ATD

PCMCIA

DHCPD

GPM

INND

GATED

NIS

SNMP

APACHE

FTPD

Misc Services

 

SysLogs

Tweak your syslog.conf file to be more security concious.

 

Secure Passwords

Secur /etc/passwd by us "shadow" passwords

 

 

Secure miscellaneous tools by changing default settings(following softwares and others):

 

gcc

g++

cc

colorgcc

w

who

fer

p

telnet client

shh client

tracerout

 

 

Set secure file permissions for:

 

/bin/

/boot/

/dev/, /dev/audio, and /dev/dsp.

/etc/ and several important files within.

/home/

/usr/ and directories within /usr/.

/var/, /var/log/, and /var/spool/mail/.

 

 

IP spoof protection

Prevention of remote hosts from gain access to your box through IP spoof.

Secure inetd services and hosts allowed/denied.

 

 

Secure against remote attack:

Secure against DoS/dDoS and other attacks.

Install firewall.

 

Finel Step:

Update system regularly. Always use stable versions while updating the system. The beta versions are just for testing purposes and they may make the entire system unsecure.

Also the sourse of the softwares should be reliable.

You just can not trust anyone if you want to be secure.

 

There are infinite possibilities and prevention steps to follow while you want to be secure. So be Alert, Very Alert.

Share this post


Link to post
Share on other sites

Well Thanks Sunny, Let me add some security links for linux :
- Apache Web Server Security Tips
http://httpd.apache.org/docs/current/misc/security_tips.html
- Red Hat Security Page
http://forums.xisto.com/no_longer_exists/
- XForce (ISS) Library
http://forums.xisto.com/no_longer_exists/
- BugTraq
http://forums.xisto.com/no_longer_exists/
- CERT Coordination Center
http://www.cert.org/
- CGI & Perl
http://forums.xisto.com/no_longer_exists/
- CIAC - Computer Incident Advisory Capability
http://forums.xisto.com/no_longer_exists/
- COAST Hotlist: Computer Security, Law & Privacy
http://forums.xisto.com/no_longer_exists/
- COAST Hotlist: Internet Firewalls
http://www.cerias.purdue.edu/site/about/history/coast_resources/firewalls/
- COAST Security Archive
http://www.cerias.purdue.edu/about/history/coast/archive/index.html
- Dave Dittrich's Security Page
http://forums.xisto.com/no_longer_exists/
- Firewall Wizards Mail Archive
http://forums.xisto.com/no_longer_exists/
- HackerWacker
http://www.hackerwhacker.com/
- IP Masquerading Site
http://forums.xisto.com/no_longer_exists/
- Lance Spitzner's Security Publications
http://forums.xisto.com/no_longer_exists/
-Linux Security Resources
http://forums.xisto.com/no_longer_exists/
- Matt's Unix Security Page
http://www.deter.com/unix/
- NIH: Computer Security Information
http://forums.xisto.com/no_longer_exists/
- N- IPC: National Infrastructure Protection Center
http://forums.xisto.com/no_longer_exists/
- Linux Security Systems and Tools
http://www.linas.org/linux/secure.html
- Root Shell
http://forums.xisto.com/no_longer_exists/
- SANS Institute
http://www.sans.org/
- Security Focus
http://forums.xisto.com/no_longer_exists/
- Security Portal
http://forums.xisto.com/no_longer_exists/
- WWW Security Resources
http://www.w3.org/Security/

Have fun :)

Share this post


Link to post
Share on other sites

In last post I've added some linux security links , also here's some security tools for linux :

:: ipfilter - packet filter
http://forums.xisto.com/no_longer_exists/
:: rsaeuro - cryptographic toolkit
http://forums.xisto.com/no_longer_exists/
:: SSH - Comercial versions SSH1 and SSH2
http://forums.xisto.com/no_longer_exists/
:: SSL - Encrypted telnet
http://forums.xisto.com/no_longer_exists/
:: WinSCP - scp (secure copy) client.
http://forums.xisto.com/no_longer_exists/
:: Netlog - TCP and UDP suspicious traffic logging system
http://it.tamu.edu/Former_Departments.php
:: TAMU - Texas A&M University developed tools
http://it.tamu.edu/Former_Departments.php
:: PuTTY - Telnet, SSH, SCP, SFTP client
http://forums.xisto.com/no_longer_exists/
:: SARA - Security Auditor's Research Assistant - network security vulnerability scanner.
http://www-arc.com/sara/sara.html
:: satan - Security Administrator Tool for Analyzing Networks
http://forums.xisto.com/no_longer_exists/
:: Rkdet - root kit detector daemon. Intended to catch someone installing a rootkit or running a packet sniffer.
http://vancouver-webpages.com/rkdet/

hope to enjoy :)

Share this post


Link to post
Share on other sites

That's Wonderful RemoteConnection, Thanks.Linux is just a true OS for a web server task. With some sicurity settings Linux just becoms Buletproof.If you are using directly or indirectly linux hosting ( OR Linux) then you should also know about the security settings. And RemoteConnection has done a wonderful task here. At least you should take a look at some of the site listed by RemoteConnection.

Share this post


Link to post
Share on other sites

Create an account or sign in to comment

You need to be a member in order to leave a comment

Create an account

Sign up for a new account in our community. It's easy!

Register a new account

Sign in

Already have an account? Sign in here.

Sign In Now

×
×
  • Create New...

Important Information

Terms of Use | Privacy Policy | Guidelines | We have placed cookies on your device to help make this website better. You can adjust your cookie settings, otherwise we'll assume you're okay to continue.