01-17-2008
vino makes a good point about 8 and at first I decided against posting in this thread. But I guess I will take a shot at this....
First, The Microsoft world and the Unix world have a different view of what an OS is. When Dan Bernstein announced that he was failing his entire security class because they only found 44 Unix security flaws, quite a few Unix folks called "foul". For example, one bug was in Mplayer, an ASF video player. Unix folks tend to not consider a tool like that to be an OS component. But Microsoft folks do. In both OS's the majority of the security flaws are in applications far above the kernel. Both OS's have rather secure kernels. Microsoft possibly brought this on themselves. For example, they have fought in court to have IE (Internet Explorer) as an OS component. But we do not a level playing field here... an IE bug is considered an XP problem while a Firefox or Opera bug is not charged to Unix.
That aside, there is a fundamental Windows security problem. Most Windows users run all the time with administrator privileges. If you try to run as a non-administrator, many application programs will croak. Microsoft has done little to fight this. In contrast, Unix users are strongly encouraged to operate as root only when needed. Very few Unix or Linux users ever surf the web as root. This really helps security a lot. Meanwhile most IE users happily surf the web in admin mode.
I doubt that anyone from Microsoft is reading this. But the number one suggestion I would make to them is to get users out of Admin mode. Applications that only run in admin mode should be considered unsafe and publicly labelled as such. In fact, IE should refuse to connect to the Internet in Admin mode. Media Player should refuse to run at all in Admin mode. And so on. Some security problems will still exist, but the severity of these problems would be greatly reduced.
10 More Discussions You Might Find Interesting
1. Solaris
Are GNOME or javadsktop supported of the box on Solaris 10 on Ultra (SUNBlade 1500) ?
I'could switch desktops to KDE at CDE logon. But when I tried to use the JavaDesktop it simply returns me back to the log on screen of CDE.
How do I conigure to the latest GNOME and.or JavaDesktop if... (3 Replies)
Discussion started by: miket
3 Replies
2. Solaris
Probably a silly question but one I dont know the answer to all the same..
I downloaded the following from sun - solaris 9 part 1 of the software
sol-9-u7-sparc-v1.zip
When I unzip it I get an iso file. How do I burn it to a cdrom and be able to insert it to solaris machine so that it will... (3 Replies)
Discussion started by: frustrated1
3 Replies
3. Shell Programming and Scripting
Hello again Gurus,
Can someone please direct me to an online source that specifically explains what characters like mean within if statements? or scripts in general, I have found information about the different letter options you can specify for an if statment, but I get really confused with the... (3 Replies)
Discussion started by: charliemp3
3 Replies
4. UNIX for Dummies Questions & Answers
I know its kinda silly but I've seen the texts consider one side - a thread executes and finishes its task but I was wondering what will happen if the process dies when the thread is still under execution... I somehow think that the thread will continue execution but am backing off from the fact... (10 Replies)
Discussion started by: Legend986
10 Replies
5. UNIX for Dummies Questions & Answers
How do I go about finding the number of unique words in a file. (3 Replies)
Discussion started by: EECSDAVE
3 Replies
6. UNIX for Dummies Questions & Answers
Hi,
One silly question. I would like to add statement like below and append to a file. I used the below code; however, it does not work. Can anyone please tell me what mistakes I have made?
awk '
{ for (i=1;i<=563;i++)
print i
}'>>output.txt
Thanks.
-Jason (1 Reply)
Discussion started by: ahjiefreak
1 Replies
7. Solaris
Hi Guys,
I have installed SSH package on server as well as clients.
I think I need to these steps next.
Login as root on the server.
1) ssh-keygen -b 1024 -t rsa -f /etc/ssh_hosts_key.pub -N " "
Login to root as the user.
2)ssh_keygen -b 1024 -t rsa
Enter the phrase
Basically this... (3 Replies)
Discussion started by: nitinkgoud
3 Replies
8. Solaris
Can anyone tell me where is the best place to put my own system related scripts on a solaris server.
I usually place my scripts in /usr/sbin/<my_name>, but that is only because my senior sysadmin used to do that.
What does the "unix etiquette" say? (8 Replies)
Discussion started by: soliberus
8 Replies
9. Shell Programming and Scripting
FILENAME is a variable.
Is there really any difference between "$FILENAME.sh" and "$FILENAME".sh ? (5 Replies)
Discussion started by: proactiveaditya
5 Replies
10. Post Here to Contact Site Administrators and Moderators
Hi Team,
In case if i want to delete one of my posting thread.. can i delete that?
Just asking to know.. (5 Replies)
Discussion started by: darling
5 Replies
LEARN ABOUT MOJAVE
ansi_ctrlu
term::ansi::ctrl::unix(n) Terminal control term::ansi::ctrl::unix(n)
__________________________________________________________________________________________________________________________________________________
NAME
term::ansi::ctrl::unix - Control operations and queries
SYNOPSIS
package require Tcl 8.4
package require term::ansi::ctrl::unix ?0.1?
::term::ansi::ctrl::unix::import ?ns? ?arg...?
::term::ansi::ctrl::unix::raw
::term::ansi::ctrl::unix::raw
::term::ansi::ctrl::unix::columns
::term::ansi::ctrl::unix::rows
_________________________________________________________________
DESCRIPTION
WARNING: This package is unix-specific and depends on the availability of two unix system commands for terminal control, i.e. stty and
tput, both of which have to be found in the $PATH. If any of these two commands is missing the loading of the package will fail.
The package provides commands to switch the standard input of the current process between raw and cooked input modes, and to query the size
of terminals, i.e. the available number of columns and lines.
API
INTROSPECTION
::term::ansi::ctrl::unix::import ?ns? ?arg...?
This command imports some or all attribute commands into the namespace ns. This is by default the namespace ctrl. Note that this is
relative namespace name, placing the imported command into a child of the current namespace. By default all commands are imported,
this can howver be restricted by listing the names of the wanted commands after the namespace argument.
OPERATIONS
::term::ansi::ctrl::unix::raw
This command switches the standard input of the current process to raw input mode. This means that from then on all characters typed
by the user are immediately reported to the application instead of waiting in the OS buffer until the Enter/Return key is received.
::term::ansi::ctrl::unix::raw
This command switches the standard input of the current process to cooked input mode. This means that from then on all characters
typed by the user are kept in OS buffers for editing until the Enter/Return key is received.
::term::ansi::ctrl::unix::columns
This command queries the terminal connected to the standard input for the number of columns available for display.
::term::ansi::ctrl::unix::rows
This command queries the terminal connected to the standard input for the number of rows (aka lines) available for display.
BUGS, IDEAS, FEEDBACK
This document, and the package it describes, will undoubtedly contain bugs and other problems. Please report such in the category term of
the Tcllib SF Trackers [http://sourceforge.net/tracker/?group_id=12883]. Please also report any ideas for enhancements you may have for
either package and/or documentation.
KEYWORDS
ansi, columns, control, cooked, input mode, lines, raw, rows, terminal
CATEGORY
Terminal control
COPYRIGHT
Copyright (c) 2006 Andreas Kupries <andreas_kupries@users.sourceforge.net>
term 0.1 term::ansi::ctrl::unix(n)