I think you have a false sense of security with regards to Linux vulnerabilities and exploitations. There are dozen of known exploits throughout the Linux ecosystem that are publicly disclosed frequently.
What makes you think Linux is more secure than windows? I’m not trying to start an argument here I’m just curious.
I find the Linux ecosystem has far better updating mechanisms than Windows and it doesn’t have as much backwards compatibility cruft as Windows. That and the open source nature I think is better at having exploits uncovered. I’m not saying Linux is perfectly secure, but that it’s more secure than Windows. But I think the biggest reason it’s less likely to get viruses is just that it’s a smaller target and that hackers aren’t spending as much time trying to attack it, plus the users are more tech savvy meaning any attacks will be less lucrative.
The target user base is much smaller. Most viruses are spread through user error and server administrators are far more competent than a typical OS user. Also, typical server exploits lead to exposing credentials rather than spreading viruses.
Software is usually installed from repositories and not random websites, so there is less room for user error in general. Even if you download an executable file, you will most likely have to give it permissions to run first. So I think it’s more immune to viruses not because of its users, but because of the way it’s designed.
Open source can be a double edged sword for that but I dig it.
I think dependencies in Linux packages does cause a lot of issues but that’s mostly on air gaped networks, and even still manageable.
Sizing the target depends on what threat actors are involved though so those broad stroke statements don’t hold up well in reality, from my Experience.
To be fair, critical security patches for Windows are often delivered out of band (not on patch Tuesday). And malware definitions for Defender are daily.
Not trying to defend Microsoft entirely, but not everything is delayed until their monthly update schedule.
GNU/Linux is Libre Software, so that already makes it more secure, because anyone can actually verify what it does and modify it if needed. This means that users are really in control of what the operating system does. It’s difficult to verify what Windows does, but we know that it contains spyware, which isn’t easy to remove.
Installing software from a repository is also safer than downloading it from random websites.
When some library like OpenSSL has a vulnerability, you will get a new version with system updates and all programs will start using that patched version. On Windows usually each program has to have its own update mechanism or it will be stuck with old libraries.
There’s a difference between exploits and malicious software (even though malicious software often makes use of exploits, it is different). I am willing to bet there is way way more malicious software written for Windows than Linux, simply because there’s way more Windows users than Linux users and there’s way more Windows software than Linux software.
Yeah that’s true. But I say false sense of security because that’s what happened to Apple back in the day and they got caught with their pants down lol
I think you have a false sense of security with regards to Linux vulnerabilities and exploitations. There are dozen of known exploits throughout the Linux ecosystem that are publicly disclosed frequently.
What makes you think Linux is more secure than windows? I’m not trying to start an argument here I’m just curious.
I find the Linux ecosystem has far better updating mechanisms than Windows and it doesn’t have as much backwards compatibility cruft as Windows. That and the open source nature I think is better at having exploits uncovered. I’m not saying Linux is perfectly secure, but that it’s more secure than Windows. But I think the biggest reason it’s less likely to get viruses is just that it’s a smaller target and that hackers aren’t spending as much time trying to attack it, plus the users are more tech savvy meaning any attacks will be less lucrative.
It’s the most popular server system, so I’m not so sure about that.
The target user base is much smaller. Most viruses are spread through user error and server administrators are far more competent than a typical OS user. Also, typical server exploits lead to exposing credentials rather than spreading viruses.
Software is usually installed from repositories and not random websites, so there is less room for user error in general. Even if you download an executable file, you will most likely have to give it permissions to run first. So I think it’s more immune to viruses not because of its users, but because of the way it’s designed.
Open source can be a double edged sword for that but I dig it.
I think dependencies in Linux packages does cause a lot of issues but that’s mostly on air gaped networks, and even still manageable.
Sizing the target depends on what threat actors are involved though so those broad stroke statements don’t hold up well in reality, from my Experience.
Not sure what their answer is but not delaying security fixes until some fixed monthly date would be my answer.
And a single place to download and install all those security fixes with one command.
To be fair, critical security patches for Windows are often delivered out of band (not on patch Tuesday). And malware definitions for Defender are daily.
Not trying to defend Microsoft entirely, but not everything is delayed until their monthly update schedule.
To be fair if it’s scored high enough there are usually workarounds posted and supported to hold you over for patch Tuesday.
I’ve done patch management on both platforms and find the predictability easier to manage. But that’s not home use so grain of salt stuff.
GNU/Linux is Libre Software, so that already makes it more secure, because anyone can actually verify what it does and modify it if needed. This means that users are really in control of what the operating system does. It’s difficult to verify what Windows does, but we know that it contains spyware, which isn’t easy to remove.
Installing software from a repository is also safer than downloading it from random websites.
When some library like OpenSSL has a vulnerability, you will get a new version with system updates and all programs will start using that patched version. On Windows usually each program has to have its own update mechanism or it will be stuck with old libraries.
There’s a difference between exploits and malicious software (even though malicious software often makes use of exploits, it is different). I am willing to bet there is way way more malicious software written for Windows than Linux, simply because there’s way more Windows users than Linux users and there’s way more Windows software than Linux software.
Yeah that’s true. But I say false sense of security because that’s what happened to Apple back in the day and they got caught with their pants down lol