MORE ENTRIES

NYT warns against running Windows

January 07, 2007 | Comments: (0)

NYT warns against running Windows

A bit of technical advice appearing in the Sunday New York Times likely has elicited snickers from members of the Apple and Linux community and moans of displeasure from Windows users and just about everyone at Microsoft. That bit of advice, found in an article titled "Tips for Protecting the Home Computer," is to stop running Windows as well as Internet Explorer.

"Using a non-Windows-based PC may be one defense against these programs, known as malware; in addition, anti-malware programs and antivirus utilities for the PC are available from several vendors," the article says.

Of course, Windows' and IE's respective histories of insecurity are really no secret to anyone in IT -- or even anyone who knows what the acronym IT stands for; security holes have been reported time and time and time again over the year. Thus in some ways, the NYT's article is laughably dated.

Still, given how widely read The New York Times is, the article must come as a bit of a blow to Big Red, as it suggests that the perception that Windows and IE aren't safe might be becoming more mainstream. But more important, it may suggest that more casual PC users are coming to realize that real alternatives may exist to meet their needs.

Interestingly, though, the article doesn't make any mention of alternative OSes, though it does refer to increasingly popular non-IE browsers like Firefox and Opera.

The article doesn't come at a good time for Microsoft: Vista, after all, is due to be released to consumers shortly and Microsoft has invested a lot of resources in attempting to bolster the forthcoming OS's security -- not to mention a lot of PR time and effort trying to let people know about the company's efforts. Meanwhile, the NYT article makes no mention of Vista's security enhancements (though it does allude to better defenses in IE 7).

To Microsoft's credit, at least some IT folks out there have taken notice of the work the company has done to secure Vista. Case in point: InfoWorld's very own Security Adviser Roger Grimes wrote last month that "Vista will never be as secure as OpenBSD, but I believe it will be secure enough to ensure that Microsoft becomes known as a vendor of choice for a secure operating system. And that's a far cry from where it was five years ago."

On the other hand, there already have been reports out about security holes in Vista.

What do you think? Is the Times offering some sound advice here for mainstream end-users or simply serving up some FUD?

Posted by Ted Samson on January 7, 2007 11:41 PM

RATE THIS ARTICLE:

COMMENTS

remember robert morris tapan? In 1988, He brought the Internet to its knees crashing ten percent of the computers on the Internet in just a single day. And, all the computers that crashed were Unix and VAX machines.
Unix and its flavors like Linux are not immune to attacks. Nor they are more secure.
NT based operating systems (NT, 2000, XP and 2003) are structurally superior to Unix or Linux. Take the security concept. In NT based OSes, every single object, whether it is file or user or site link has a Security Descriptor what the Linux lacks.
And in Linux if you are Root then you are God. In NT based OSes you are not: Even the Administrator, the user corresponding to the Root user in Linux, can be prevented from doing this and that thing.
And many surveys show that vulnerabilities in Windows are patched faster than the ones in Linux.

Posted by: muratyildirimoglu at January 11, 2007 12:44 PM

Michael, more popular does not mean more easily taken over since Mac OS X and Linux are designed with as network OS's unlike M$ Window$. So with your reasoning, with 60-70% web servers running on some flavors of linux or BSD, the internet is already taken over.

J.T.

Posted by: J.T. at January 9, 2007 01:20 PM

Same old tired arguments, eh, Michael? If the security problems were really about market share, instead of poor design, why does the majority-share webserver Apache sport many, many fewer vulnerabilities than Microsoft's ISS?

Let's face reality. Microsoft has hobbled itself, both in stability and security, by past design decisions that were made by Sales and Marketing people instead of engineers. Now we're all paying the price.

Posted by: John at January 9, 2007 12:54 PM

Michael, you might want to note that the vast majority of vulnerabilities for Linux are not in the operating system, but in certain applications. It might not sound like a big difference, but remember that with Linux you choose what applications you want installed. With Microsoft, you have no choice for media players and web browsers, for example. You may choose not to use Media Player or IE, but they're still installed, they're still vulnerable, and you can't really remove them...

Posted by: NetArch at January 9, 2007 12:20 PM

> What these silly Mac OS and Linux users don't, perhaps, realize is that if everyone gave up on Windows the hackers and malware bandits would turn their attentions to THEM!

Sorry, but that's wrong. The underlying technologies are completely different. Please do some research and you will see that no version of Windows has ever been safe because of the way processes communicate with one another. Mac OS and Linux are much closer to what Vista is trying to become.

Posted by: Silly Mac User at January 9, 2007 10:30 AM

Michael - It may be true that hackers will focus their attentions elsewhere but that doesn't change the fact that other OS's and browsers are just more secure. For instance, Firefox has security holes just like Internet Explorer but take a look at how many days in 2006 each of the two browsers was "unsafe" (describing a situation where critical security holes were known to exist but had no patch). Internet Explorer: 238 days, Firefox: 9 days.

Posted by: Fredd at January 9, 2007 09:40 AM

Now there is a stupid comment by a Windows user who has probably never used Linux or Mac in any serious way:

"What these silly Mac OS and Linux users don't, perhaps, realize is that if everyone gave up on Windows the hackers and malware bandits would turn their attentions to THEM! Anyway, if you follow Secunia you will find many advisories relating to vulnerabilities in Linux, in particular, and also in Mac OS to a lesser extent."

The crackers out there have already tried to penetrate Linux and Mac fool! The fact is that there is much less chance of that happening by default.

Yes, there are security advisories for Linux and all operating systems. The difference is that the Linux community does something about it in the short term, often providing fixes within hours or days at the most. Microsoft makes users wait for weeks, months, and even years to fix its security problems at there cost.

Please go use Linux for a few years then come back and make your comments.

Bet you have anti-virus software on your Windows machine. I have been using Linux for ten years and have never had a virus. Bet you can't say the same. I don't have any anti-virus software installed and don't need any. That's definitely more secure by design.

Get a clue!

Posted by: RM at January 9, 2007 07:58 AM

There are no silly Mac OS and Linux users. Only stupid Windows administrators that know nothing else. Any computer engineer that's used both Windows and Linux knows Windows is not secure and should be avoided in the enterprise...

Posted by: Bill Stump at January 9, 2007 07:49 AM

The Times is offering sound advice. MS products are flawed architecturally for security and can not be fixed. How many versions and years does it take to correct the "most secure OS ever"? Does the word "sucker" come to mind... The only "fix" is to use Linux; hence, the deal with Novell...

Posted by: Jed at January 9, 2007 07:38 AM

Posted by: Jed at January 9, 2007 07:36 AM

What these silly Mac OS and Linux users don't, perhaps, realize is that if everyone gave up on Windows the hackers and malware bandits would turn their attentions to THEM! Anyway, if you follow Secunia you will find many advisories relating to vulnerabilities in Linux, in particular, and also in Mac OS to a lesser extent. Internet Explorer and Outlook Express are extremely vulnerable as I know to my cost. But Mozilla Firefox is a brilliant browser and Thunderbird for e-mail is superb.

Posted by: Michael at January 8, 2007 01:46 AM

Quite simply, Vista 'security' is be more of the same, but with a more interfering, productivity stopping interface.

If the Windows botnets continue to spam the world as they are now, Microsoft Windows may have to be outlawed to protect us from a global financial meltdown.

Posted by: Jon T at January 8, 2007 01:39 AM

It's definitely not FUD. Windows, no matter which version is run is insecure. The only way to protect a windows machine is to unplug it from the net. It's that simple.

When Microsoft debuted Vista at the black hat conference, it didn't even take a day for someone to hack it. Since then, folks have found holes in their so called security.

Posted by: Mike at January 8, 2007 01:39 AM