July 18, 2008 6:37 AM PDT

Linux desktop security: It's a matter of process and architecture

Posted by Matt Asay

Is Linux inherently more secure than Windows? Apparently so, according to this article, but the reasons have less to do with "thousands of eyeballs" and more to do with "intelligent design."

There are numerous reasons why a Linux PC is more secure from malicious software than a Windows PC. The most obvious is the way a user interacts with his operating system....

A Linux virus is doomed from early conception and there's a rough jungle awaiting. For an ELF binary file to get infected by a virus, the malicious program has to first get write access to other binaries. Prior to that, it must somehow disguise itself. Binary-only applications are so rare in the Linux world that any software not designed by a major developing firm is subject to inquiry. After a day in the wild, someone will figure out the binary file hides something else and the element of surprise will be gone. We're used to having the source code at our disposal. Try hiding a malicious code in plain text....

Windows users are accustomed to constantly running applications with administrative rights. The first account you create on a Windows XP machine is in most cases the only one you'll ever use, and that one has administrator privileges. It's fairly easy for a virus or worm to spread with all those doors open....

Surely Microsoft developers are at least this smart, too? This is a basic design decision that really doesn't have as much to do with Linux developers being security gods so much as Windows developers being security clowns, at least with respect to administrator rights. To its credit, Microsoft changed this in Vista, but what of the other design decisions the article calls out?

Any security experts want to weigh in? I'm certainly not one....

Topics:

Microsoft

Tags:

Linux,

security,

Windows

Bookmark:
Digg
Del.icio.us
Reddit
Recent posts from The Open Road
Linux desktop's on-again, off-again relationship with Brazil
Could governments effectively subsidize open-source development?
Google's weird ways with open-source licenses
Working with Windows and Linux, playing with the Mac
Novell's third-quarter loss widens, but Linux booms by 30 percent
Add a Comment (Log in or register) 2 comments
by tristanbob July 18, 2008 1:50 PM PDT
Funny you write this today. Did you read Savio's comment on the security vulnerability in the Spring framework? Why didn't the "intelligent design" work in that case?

http://weblog.infoworld.com/openresource/archives/2008/07/do_developers_s.html

I understand that all human created software will have bugs.
Reply to this comment
by tinyang July 23, 2008 2:23 PM PDT
The biggest difference between Linux and Windows is that Windows is not built upon the POSIX standard and Linux is. I'm not sure what if any standards Windows has incorporated into it, but if it did it would be both more stable and more secure.
Reply to this comment
Powered by Jive Software
advertisement

About The Open Road

Matt Asay brings a decade of in-the-trenches open-source business and legal experience to the Open Road, with an emphasis on emerging open-source business strategies and opportunities. Matt is general manager of the Americas division and vice president of business development at Alfresco, a company that develops open-source software for content management. He is a member of the CNET Blog Network and is not an employee of CNET. Disclosure.

Add this feed to your online news reader

The Open Road topics

Latest tech news headlines

Featured blogs

advertisement

Inside CNET News

Scroll Left Scroll Right
News
Latest news
Business tech
Green tech
Wireless
Security
Media
Popular topics
Apple iPhone
Apple iPod
Dell
PlayStation 3
Wii
Windows Vista
CNET sites
CNET TV
Downloads
Forums
News
Reviews
Site map
More information
Newsletters
Corrections
Customer Help Center
RSS
What's new
About CNET