IMHO, Linux' ability to configure virtually anything is a strength and weakness. As Ed, pointed out proper know how and admin is the real key on this issue, but still requires one to stay up to date on patches. However, Linux' being very configurable, can close any security hole and still remain functional for its purpose. Agin this still requires the admin to minitor things, as new methods of security breaches are always one day away.
Of coures if you remove all daemons, and commandline prompts, as I was told to do one time.....That would be fool proof, it makes a totally useless server. :-) "Lazor, Ed" wrote: > > How secure the system is depends more on configuration, how well you keep up with > updates / patches, and whether you take time to configure security tools (firewalls, > tripwire, etc.). > > Linux comes with all kinds of things installed and enabled by default. IMHO that > makes the default installation less secure, especially if you're not familiar enough > with Linux to go through and disable or secure everything on the system. > > > -----Original Message----- > > Hello, > > > > I'm trying to sell my boss on replacing our Win2k IIS web > > server with a RH8/9 Apache server. Although it's my > > understanding that Linux is more secure than windows I really > > don't have much to point out in defense on that idea. > > > > Please list for me reasons why you believe (or know for a > > fact) that Linux is more secure than our current setup. Let's > > assume two different situations: 1. Out of the box with a > > standard install, 2. Standard install, fully patched. > > > > > > Thanks a lot, > > Chris. > > DISCLAIMER: > This message is intended for the sole use of the individual to whom it is addressed, > and may contain information that is privileged, confidential and exempt from > disclosure under applicable law. If you are not the addressee you are hereby > notified that you may not use, copy, disclose, or distribute to anyone the message > or any information contained in the message. If you have received this message in > error, please immediately advise the sender by reply email and delete this message. > > -- > redhat-list mailing list > unsubscribe mailto:[EMAIL PROTECTED] > https://www.redhat.com/mailman/listinfo/redhat-list -- redhat-list mailing list unsubscribe mailto:[EMAIL PROTECTED] https://www.redhat.com/mailman/listinfo/redhat-list
