Version: 2008

Comments on: Canonical dismisses Ubuntu security concerns

Worries over Ubuntu's security, following shutdown of Canonical-sponsored community-run servers, are misplaced, company says.

Add a Comment (Log in or register) (15 Comments)
  • prev
  • 1
  • next
Yeah, right! Oh Linux is so more secure, LOL!!
by WJeansonne August 16, 2007 1:57 PM PDT
Sounds like FOSS spin to me. What a joke.
Reply to this comment
How much?
by amadensor August 16, 2007 5:37 PM PDT
Were you paid to make that comment? It smells like astroturf.

Run your password in plain text across the public internet, and don't do any security patches fro months and see what happens, with ANY OS.

Make a real slam if you are going to slam, like maybe that they trusted people who don't know what they are doing to run the servers.
View reply
managment maes an OS secure
by tgrenier August 16, 2007 2:11 PM PDT
I thought that was only for lowly Windows admins to worry about. Security was breached because of poor managment (at least that's how I read this story). Every OS has to be managed.
Reply to this comment
I thought Linux can't be hacked!!!!
by FutureGuy August 16, 2007 2:26 PM PDT
fall down laughing..
Reply to this comment
Brilliant comment!
by ethana2 August 16, 2007 11:05 PM PDT
I expect you've tried it for yourself and come to your own conclusions based on facts?
Wait, nevermind...

I dual boot Windows XP home and Ubuntu.
Linux kicks windows butt all over the yard.
I came to that conclusion myself. Thank you.
Anything can be hacked
by Vegaman_Dan August 17, 2007 8:26 AM PDT
If you're running a server that is out of date and not maintained properly, it just makes it that much more easy for it to be compromised.

The OS doesn't matter when the admin/owner isn't doing their job.
Hard to protect against stupid choices
by gardion07 August 16, 2007 3:31 PM PDT
Any operating system that uses ftp with usernames with no ssl or anything is likely going to be hacked since usernames and passwords are sent out in clear text. You may as well be telling everyone "Hey here is my username and password come on and hack me". That was the problem if you look on the Canonical/ ubuntu site you'll find the systems were using ftp rather than ssh like they should have been. Also they weren't getting security updates either because something wasn't working properly.

Let that be a lesson not to use ftp or telnet on a public network or you'll likely get hacked. Those tools should be banned.
Reply to this comment
True that...
by Penguinisto August 16, 2007 5:00 PM PDT
...but you know the really funny part of this story? It's all the MSFT astroturfers scrambing to post something like "ZOMG y00 gotZ h@x0rd!" when in reality they couldn't even be arsed to read the article.

I think we should sit back and watch 'em squeal in ignorance for awhile...

...(hands over bag) popcorn?

/P
View reply
Both Sprint and ICall sent my username + passoword in and email
by SiXiam August 17, 2007 12:50 AM PDT
What is a matter with these companies?

Can you be any more stupid sending someones username and password in an unsecure email?
OS doesn't matter if the owner doesn't maintain it
by Vegaman_Dan August 17, 2007 8:23 AM PDT
In the case we have here, the company responsible for the servers admitted to doing a very poor job of maintenance, running an unpatched older version of Ubuntu that then got hacked.

Is that Ubuntu's fault? Well, not the fault of the OS, that's for sure. The server has to be kept updated to be secure. The irony is that it was Ubuntu's own server being colo'd at another facility. I would have thought they would know better, but it shows anyone can slip up now and then.

I do not blame the OS nor anyone else who uses it. I do blame the managers of the servers affected for not being responsible in keeping their systems up to date.

This can happen to any OS, be that OSX, Linux, BSD, Windows, or even.... OS2/Warp. Anything that is allowed to run without maintenance will eventually die on you. It's the same way with cars. Don't change the oil and you might have a breakdown sometime in the future.

The real title should have been, "Server compromised due to inadequate maintenance." That doesn't sound as exciting though. Make it sound like it's the fault of the OS and you'll get the religious zealots out in force here to say how this is all Microsoft/Apple/Linux's fault.

It isn't, but there are some people here who will try to spin it every way possible except towards the truth.
Reply to this comment
The real story
by gp2792 August 28, 2007 12:28 PM PDT
Obviously, this isn't an issue with Ubuntu. It could happen with any OS. The real story is that if it had been Windows, the usual subjects would have immediately chimed in with how insecure windows is, blah blah blah. You know who you are querty, penguinista, decider. If it were windows, no way in the world you would have said it was a simple administration issue. That's what the windows fanboys are laughing about. Because the facts are, all systems must be managed.
Linux is not hacked, but aplications running are.
by random753 October 10, 2007 8:42 PM PDT
Because Linux is stable it is a nice target for addware pushers. Linux itself is more secure because it is less common but any application running on the machine can potentially be an open door. Most users are not aware if their machine is being used to send junk E mails to other people.
Reply to this comment
(15 Comments)
  • prev
  • 1
  • next
advertisement

Latest tech news headlines

RSS Feeds

Add headlines from CNET News to your homepage or feedreader.

More feeds available in our RSS feed index.

advertisement
News
News site map
Latest headlines
Contact News
News staff
Corrections
CNET blogs
Popular topics
Apple iPhone
Apple iPod
Cell phones
CES 2010
GPS
LCD TV
CNET sites
CNET Site map
CNET TV
Downloads
News
Reviews
Shopper.com
More information
Newsletters
CNET Mobile
Customer Help Center
RSS
CNET Widgets
About CNET