Linux community isn't in a reasonable position to criticise Microsoft on security. Mainstream distributions are much worse off than Windows.
Minimal & properly configured = no ports bound but sshd, sshd configured for pubkey auth only, no weird sshd options enabled.
-
-
Sure, and the Windows setup being compared against has the same setup. The original topic was end user desktop systems using the defaults.
-
I agree mainstream Linux distros are bad in this regard but not necessarily worse, just differently bad.
-
Windows has loads of UAC-bypass bugs, for example.
-
Sure, and if a Linux user account is used for administration via su / sudo, there's no true separation from root. Does it matter though?
-
Windows administrator account with UAC ~= Linux user account with sudo root access or the root password, with administration done from it.
-
There's a fairly meaningless security boundary and both really only serve to prevent the user from shooting themselves in the foot.
-
Don't really think that matters though. SYSTEM / root aren't needed to get a desktop user's data or for persistent access to the system.
-
Sandboxed applications are important. Windows is further along towards that but... it's not far enough yet to make a diff for most users.
End of conversation
New conversation -
Loading seems to be taking a while.
Twitter may be over capacity or experiencing a momentary hiccup. Try again or visit Twitter Status for more information.