[nylug-talk] Weakest Links
H. G.
tekronis at gmail.com
Fri Aug 31 15:16:51 EDT 2007
On 8/31/07, Ajai Khattri <ajai at bitblit.net> wrote:
>
>
> Most (all?) of the popular distros have security teams that regularly
> audit stuff and issue bulletins (and probably on a more frequent
> and regular basis than M$). And most distros have ways of running a system
> update to fix stuff - so its down to the user to run those updates (that
> also means that frequently the problem is between the keyboard and the
> chair :-)
>
And therein lies the crux. It would have been fine if it was just folks
actually
aware of how Linux works under the hood, but its not come to the point that
OEMs are offering preinstalled Linux boxes, and more and more of the masses
will be people who didn't even know there was a "hood" to look under,
thereby
creating a possibly fertile plundering ground for the malicious.
The point I was mainly trying to make is that the distro maintainers can
take
measures to protect these folks, but with the current security model,
can only go so far.
More information about the nylug-talk
mailing list