你不用知道为什么linux比windows安全,你只要知道现在linux比windows安全就行。silver47 写了:等 Linux用户超过Win了Linux 也不安全了。个人也没觉得Linux比Win安全到哪里去
[讨论]为什么说Ubuntu比WindowsXP安全?
-
lb_bn
- 帖子: 1261
- 注册时间: 2007-02-25 16:56
-
chanel king
- 帖子: 155
- 注册时间: 2006-07-03 23:44
-
chanel king
- 帖子: 155
- 注册时间: 2006-07-03 23:44
转贴
原文如下链接:
http://hope99.cn/html/83/n-1083.html
摘要如下:
++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++
The short life and hard times of a Linux virus一个Linux病毒艰辛短暂的一生
Why aren't the existing Linux viruses[1] anything more than a topic for conversation? Why don't they affect you in your daily computing in the way that MS viruses affect Windows users?
为什么存在的Linux病毒[1]仅仅是一个谈话中的一个话题?在你日常用计算机的时候为什么它们不会像MS病毒影响Windows用户一样影响到你?
There are several reasons for the non-issue of the Linux virus. Most of those reasons a Linux user would already be familiar with, but there is one, all important, reason that a student of evolution or zoology would also appreciate.
Linux病毒不流行有好几个原因。大部分原因Linux用户都比较熟悉了,而有个重要的原因,学进化学或动物学的学生会比较熟悉。
First, let's take a look at the way Linux has stacked the deck against the virus.
首先,让我们先看一下Linux是怎么筑起对抗病毒的甲板的。
For a Linux binary virus to infect executables, those executables must be writable by the user activating the virus. That is not likely to be the case. Chances are, the programs are owned by root and the user is running from a non-privileged account. Further, the less experienced the user, the lower the likelihood that he actually owns any executable programs. Therefore, the users who are the least savvy about such hazards are also the ones with the least fertile home directories for viruses.
对一个二进制的Linux病毒,要感染可执行文件,这些可执行文件对启动这个病毒的用户一定要是可写的。而实际情况通常并不是这样的。实际情况通常是,程序被root拥有,用户通过无特权的帐号运行。而且,越是没有经验的用户,他拥有可执行文件的可能性就越小。因此,越是不了解这种危险的用户的主目录越不适合病毒繁殖。
Even if the virus successfully infects a program owned by the user, its task of propagation is made much more difficult by the limited privileges of the user account. [For neophyte Linux users running a single-user system, of course, this argument may not apply. Such a user might be careless with the root account.]
即使这个病毒成功地感染了这个用户拥有的一个程序,由于这个用户权限受限,它进一步传播的任务也会非常困难[当然,对于运行单用户系统的Linux新手,这个论证可能不适用。这样的用户可能会对root帐户比较粗心。]
Linux networking programs are conservatively constructed, without the high-level macro facilities that have enabled the recent Windows viruses to propagate so rapidly. This is not an inherent feature of Linux; it is simply a reflection of the differences between the two user bases and the resulting differences between the products that are successful in those markets. The lessons learnedfrom observing these problems will also serve as an innoculation for future Linux products as well.
Linux网络程序构建地很保守,没有使现在Windows病毒如此快速传播变的可能的高级宏工具。这并不是Linux 的固有特征;它仅仅是两种用户基础的不同和这种不同导致的在这两种市场中的成功产品的不同的反映。通过观察这些问题学到的经验也会被用到将来的Linux 产品中。
Linux applications and system software is almost all open source. Because so much of the Linux market is accustomed to the availability of source code, binary-only products are rare and have a harder time achieving a substantial market presence. This has two effects on the virus. First, open source code is a tough place for a virus to hide. Second, for the binary-only virus, a newly compiled installation cuts off a prime propagation vector.
Linux的应用软件和系统软件几乎都是开源的。因为这么多的Linux市场份额习惯了可获得的源代码,仅提供二进制的产品很稀少,并且很难获得实质的市场份额。这对病毒有两方面的影响。首先,病毒很难藏身于开源的代码中间。其次,对仅有二进制的病毒,一次新的编译安装就截断了病毒一个主要的传播途径。
Each one of these obstacles represents a significant impediment to the successof a virus. It is when they are considered together, however, that the basic problem emerges.
这些障碍每一个都是病毒成功传播的一个重要阻碍。然而当把他们放在一起考虑的时候,基本的问题才浮现出来。
A computer virus, like a biological virus, must have a reproduction rate that exceeds its death (eradication) rate in order to spread. Each of the above obstacles significantly reduces the reproduction rate of the Linux virus. If the reproduction rate falls below the threshold necessary to replace the existing population, the virus is doomed from the beginning -- even before news reportsstart to raise the awareness level of potential victims.
一个计算机病毒,像生物病毒一样,要想传播开来,其繁殖速度必须超过其死亡(被消灭)的速度。上面提到的障碍有效地降低了Linux病毒的繁殖速度。如果它的繁殖速度降到取代原来种群所需要的阈值之下,那么这个病毒的厄运从一开始就注定了--甚至在新闻报告让潜在的受害人意识到之前。
The reason that we have not seen a real Linux virus epidemic in the wild is simply that none of the existing Linux viruses can thrive in the hostile environment that Linux provides. The Linux viruses that exist today are nothing more than technical curiosities; the reality is that there is no viable Linux virus.
我们没有看到一个真正的Linux病毒疯狂传播,原因就在于存在的Linux病毒中没有一个能够在Linux提供的敌对的环境中茁壮成长。现在存在的Linux病毒仅仅是技术上的好奇;现实是没有能养得活的Linux病毒。
Of course this doesn't mean that there can never be a Linux virus epidemic.[2]It does mean, however, that a successful Linux virus must be well-crafted andinnovative to succeed in the inhospitable Linux ecosystem.
当然,这并不意味着永远没有Linux病毒能够流行[2]。然而它确实意味着一个成功的Linux病毒要在不适合生存的Linux生态系统中存活下来必须是精心制作并具创新的。
http://hope99.cn/html/83/n-1083.html
摘要如下:
++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++
The short life and hard times of a Linux virus一个Linux病毒艰辛短暂的一生
Why aren't the existing Linux viruses[1] anything more than a topic for conversation? Why don't they affect you in your daily computing in the way that MS viruses affect Windows users?
为什么存在的Linux病毒[1]仅仅是一个谈话中的一个话题?在你日常用计算机的时候为什么它们不会像MS病毒影响Windows用户一样影响到你?
There are several reasons for the non-issue of the Linux virus. Most of those reasons a Linux user would already be familiar with, but there is one, all important, reason that a student of evolution or zoology would also appreciate.
Linux病毒不流行有好几个原因。大部分原因Linux用户都比较熟悉了,而有个重要的原因,学进化学或动物学的学生会比较熟悉。
First, let's take a look at the way Linux has stacked the deck against the virus.
首先,让我们先看一下Linux是怎么筑起对抗病毒的甲板的。
For a Linux binary virus to infect executables, those executables must be writable by the user activating the virus. That is not likely to be the case. Chances are, the programs are owned by root and the user is running from a non-privileged account. Further, the less experienced the user, the lower the likelihood that he actually owns any executable programs. Therefore, the users who are the least savvy about such hazards are also the ones with the least fertile home directories for viruses.
对一个二进制的Linux病毒,要感染可执行文件,这些可执行文件对启动这个病毒的用户一定要是可写的。而实际情况通常并不是这样的。实际情况通常是,程序被root拥有,用户通过无特权的帐号运行。而且,越是没有经验的用户,他拥有可执行文件的可能性就越小。因此,越是不了解这种危险的用户的主目录越不适合病毒繁殖。
Even if the virus successfully infects a program owned by the user, its task of propagation is made much more difficult by the limited privileges of the user account. [For neophyte Linux users running a single-user system, of course, this argument may not apply. Such a user might be careless with the root account.]
即使这个病毒成功地感染了这个用户拥有的一个程序,由于这个用户权限受限,它进一步传播的任务也会非常困难[当然,对于运行单用户系统的Linux新手,这个论证可能不适用。这样的用户可能会对root帐户比较粗心。]
Linux networking programs are conservatively constructed, without the high-level macro facilities that have enabled the recent Windows viruses to propagate so rapidly. This is not an inherent feature of Linux; it is simply a reflection of the differences between the two user bases and the resulting differences between the products that are successful in those markets. The lessons learnedfrom observing these problems will also serve as an innoculation for future Linux products as well.
Linux网络程序构建地很保守,没有使现在Windows病毒如此快速传播变的可能的高级宏工具。这并不是Linux 的固有特征;它仅仅是两种用户基础的不同和这种不同导致的在这两种市场中的成功产品的不同的反映。通过观察这些问题学到的经验也会被用到将来的Linux 产品中。
Linux applications and system software is almost all open source. Because so much of the Linux market is accustomed to the availability of source code, binary-only products are rare and have a harder time achieving a substantial market presence. This has two effects on the virus. First, open source code is a tough place for a virus to hide. Second, for the binary-only virus, a newly compiled installation cuts off a prime propagation vector.
Linux的应用软件和系统软件几乎都是开源的。因为这么多的Linux市场份额习惯了可获得的源代码,仅提供二进制的产品很稀少,并且很难获得实质的市场份额。这对病毒有两方面的影响。首先,病毒很难藏身于开源的代码中间。其次,对仅有二进制的病毒,一次新的编译安装就截断了病毒一个主要的传播途径。
Each one of these obstacles represents a significant impediment to the successof a virus. It is when they are considered together, however, that the basic problem emerges.
这些障碍每一个都是病毒成功传播的一个重要阻碍。然而当把他们放在一起考虑的时候,基本的问题才浮现出来。
A computer virus, like a biological virus, must have a reproduction rate that exceeds its death (eradication) rate in order to spread. Each of the above obstacles significantly reduces the reproduction rate of the Linux virus. If the reproduction rate falls below the threshold necessary to replace the existing population, the virus is doomed from the beginning -- even before news reportsstart to raise the awareness level of potential victims.
一个计算机病毒,像生物病毒一样,要想传播开来,其繁殖速度必须超过其死亡(被消灭)的速度。上面提到的障碍有效地降低了Linux病毒的繁殖速度。如果它的繁殖速度降到取代原来种群所需要的阈值之下,那么这个病毒的厄运从一开始就注定了--甚至在新闻报告让潜在的受害人意识到之前。
The reason that we have not seen a real Linux virus epidemic in the wild is simply that none of the existing Linux viruses can thrive in the hostile environment that Linux provides. The Linux viruses that exist today are nothing more than technical curiosities; the reality is that there is no viable Linux virus.
我们没有看到一个真正的Linux病毒疯狂传播,原因就在于存在的Linux病毒中没有一个能够在Linux提供的敌对的环境中茁壮成长。现在存在的Linux病毒仅仅是技术上的好奇;现实是没有能养得活的Linux病毒。
Of course this doesn't mean that there can never be a Linux virus epidemic.[2]It does mean, however, that a successful Linux virus must be well-crafted andinnovative to succeed in the inhospitable Linux ecosystem.
当然,这并不意味着永远没有Linux病毒能够流行[2]。然而它确实意味着一个成功的Linux病毒要在不适合生存的Linux生态系统中存活下来必须是精心制作并具创新的。
漂亮不能缺少性感^_^
-
naiveuser
- 帖子: 95
- 注册时间: 2007-12-19 8:20
-
shenhao0129
- 帖子: 192
- 注册时间: 2007-11-23 12:31
-
fangsc
- 帖子: 9
- 注册时间: 2008-01-08 11:59
-
aloha
- 帖子: 375
- 注册时间: 2006-10-11 20:41
等你真这么做就会发现在windows下有多么痛苦了,很多基本的工作都没有办法做,甚至刻光盘。前两天给LP买了个柯达相机,装了柯达的EasyShare,发现不用管理员身份无法下载相机中的照片!很多windows下的软件就是这么霸道。如果你真决定这么用,强烈建议你装windows下的sudo,http://sourceforge.net/projects/sudowin/,能够部分缓解你的痛苦。u194252 写了:那我如果在win下不用admin,改用普通用户登录,用ntfs,那安全岂不是也会高一些?不会比ubuntu差很多吧?
-
carbont
- 帖子: 3406
- 注册时间: 2007-11-22 10:20
- 来自: 北京
-
kujian
- 帖子: 241
- 注册时间: 2008-02-08 22:19
- 来自: 漳州
支持,好帖,通俗易懂watercloud 写了:一:病毒
1)Windows下都是administrator用户登录,病毒可以自由感染系统任何文件;ubuntu下普通用户不能修改系统文件。
2)Windows用户很多,研究的人也多,病毒,木马数量也很多,被攻击的数量也很多,攻击Windows终端用户有很多商业利益,如偷qq号,偷银行交易密码等等,有利益驱动研究的人也越多,“成果”也就越多;linux当前还没有普及所以病毒很少。
二:木马
同上
三:流氓软件
同上
四:常见攻击和入侵
同上,但需要补充一下,攻击者通常攻击两个方向:
a)终端用户,偷取个人信息
b)服务器,一次性获取巨额利益,比如攻击银行IBM AIX / HP-UX 等等大机,目前ubuntu两者都不算,所以很安全
五:系统设计架构上的差异
1. Win2k没有栈保护,很容易溢出/Win2k malloc攻击也没有加强;WinXP稍有加强,但相对还是容易;Win2003加强了很多,很难攻击了,现在的芯片也都有栈不可执行保护了,XP sp2以后和2003都利用了此特性,这将很难实施溢出攻击
2. Linux kernel 2.6以后的版本很多默认开启了栈保护功能,而起2.4 kernel很久前就有非官方的PAX内核补丁,加强了对抗溢出攻击,可以说早就达到了2003的标准,kernel 2.6现在的版本都内置了此功能
3. 大的服务器芯片+OS: SPARC+Solaric / PowerPC + AIX / PA + HP-UX 等在9x年就有了芯片+内核的栈不可执行保护机制
六:关于Ubuntu安全性的其它建议
1. 关闭所有对外服务,如ssh
2. 开启iptables,只让需要访问你的人能连上你
-
alan110_38
- 帖子: 172
- 注册时间: 2008-02-06 13:30
- 来自: 浙江嘉兴
-
tay0314
- 帖子: 129
- 注册时间: 2007-12-01 22:39
-
LHoffmann
- 帖子: 65
- 注册时间: 2006-07-21 9:18
