EditorsAbout the SiteComes vs. MicrosoftUsing This Web SiteSite ArchivesCredibility IndexOOXMLOpenDocumentPatentsNovellNews DigestSite NewsRSS

05.06.10

Joanna Rutkowska Chooses GNU/Linux to Demonstrate Security Problems in Apple Macs and Microsoft Windows

Posted in Apple, GNU/Linux, Microsoft, Security, UNIX, Vista 7, Windows at 6:57 am by Dr. Roy Schestowitz

Joanna Rutkowska

Summary: Security guru Joanna Rutkowska says that Apple’s and Microsoft’s proprietary operating systems are “badly designed from a security standpoint”; her firm uses GNU/Linux to create Qubes OS

A couple of months ago we saw Eugene Kaspersky slamming Windows for insecurity and this time we find Joanna Rutkowska slamming both Vista 7 and Mac OS X. Interestingly enough, Rutkowska chose GNU/Linux to “provide strong security for desktop computing” (“Mac OS X Problem Puts Up a Block To IPv6,” says this new headline from Slashdot, further proving that Mac OS X — despite its “UNIX” status — is technically lagging in some areas).

One security researcher turned operating-system developer is claiming that Windows 7 and Mac OS X are insecure by design, while proposing her own platform as a model for the bulletproof desktop OS. While swapping rootkit research for the Qubes project, Joanna Rutkowska, founder and CEO of Invisible Things Lab, announced some changes to the company she founded, namely the shift in focus away from security research and onto designing systems that were immune to rootkit by design. Taking a swing at both Windows 7 and Mac OS X, Rutkowska indicates that it makes no sense to continue hacking the two operating systems.

[...]

In the first half of April 2010, Rutkowska announced the first Alpha development milestone of Qubes OS, a new open source operating system developed by Invisible Things Lab in the past half a year, by implementing the Security by Isolation approach. “Qubes is an open source operating system designed to provide strong security for desktop computing. Qubes is based on Xen, X Window System, and Linux, and can run most Linux applications and utilize most of the Linux drivers. In the future it might also run Windows apps,” the official description of the product reads.

Vista 7 has had many flaws that require no rootkits to exploit. The links we gave yesterday are:

eWEEK has just taken a look at the LoveBug, which we mentioned yesterday too.

It would be the definition of an understatement to say the security landscape of a decade ago differed from today. In the year 2000, spam accounted for just 1 in 120 e-mails. Rustock did not exist, and Conficker was not even a figment of our collective imaginations.

And then came the LoveBug. From the moment it appeared May 4, 2000, the worm tore down the defenses of Windows computers, eventually infecting millions of Microsoft customers worldwide and causing the Pentagon, CIA and British parliament to shut down their mail systems to contain the damage.

eWEEK does call out Windows in this case, to the author’s credit.

Share this post: These icons link to social bookmarking sites where readers can share and discover new web pages.
  • Digg
  • del.icio.us
  • Reddit
  • co.mments
  • DZone
  • email
  • Google Bookmarks
  • LinkedIn
  • NewsVine
  • Print
  • Technorati
  • TwitThis
  • Facebook

If you liked this post, consider subscribing to the RSS feed or join us now at the IRC channels.

Pages that cross-reference this one

A Single Comment

  1. your_friend said,

    May 6, 2010 at 5:54 pm

    Gravatar

    Real security experts need to say and do more of this.

What Else is New


  1. Links 10/12/2019: Kubernetes 1.17, Debian Init Systems GR

    Links for the day



  2. 'Cancel Culture' as 'Thoughtpolice' Creep

    Richard Stallman spoke about an important aspect of censorship more than 2 decades ago (before “Open Source” even existed); it was published in Datamation (“Censoring My Software”) 23 years before a campaign of defamation on the Internet was used to remove him from MIT and FSF (censoring or ‘canceling’ Stallman himself)



  3. Microsoft Still Hates GNU/Linux and Mark Shuttleworth Knows It (But He is Desperate for Money)

    We're supposed to believe that a PR or image management (reputation laundering) campaign alone can turn Microsoft from GNU/Linux foe into friend/ally



  4. Actions Against EPO Corruption and Unitary Patent (UPC) Injustice/Lobbying

    The EPO is apparently going on strike again and an action against the UPC is scheduled for later this week (protest in Brussels)



  5. “The Fifth Freedom as a Meme”

    The issue with systemd (or SystemD) has provoked or at least stimulated discussions about the limits of the famous Four Freedoms



  6. IRC Proceedings: Monday, December 09, 2019

    IRC logs for Monday, December 09, 2019



  7. Demonstration Against Unitary Software Patents, Thursday 12 Dec in Brussels

    FFII's call to demonstrate against the UPC



  8. Links 9/12/2019: China on GNU/Linux, Canonical Wants Help to Improve Ubuntu

    Links for the day



  9. Links 9/12/2019: Linux 5.5 RC1, EasyOS Buster 2.1.9

    Links for the day



  10. IRC Proceedings: Sunday, December 08, 2019

    IRC logs for Sunday, December 08, 2019



  11. Mandatory Education for Those Who Use and Misuse Buzzwords Would Go a Long Way

    In an age of substitution — where marketing terms replace meaningful words and concepts — it has gotten more difficult to have honest debates, for example about the scope of patents



  12. Once Upon a Time Banter Was Allowed on Mailing Lists

    Hours ago Torvalds announced RC1 of the next Linux (kernel) release; it has been a while since he last said something ‘controversial’ (following his month at the penalty box); free speech deficit can make us weaker, not stronger (advantage to those who work in the dark)



  13. Links 8/12/2019: Debian Init Systems GR, NomadBSD 1.3

    Links for the day



  14. Can We Quit Celebrating DRM in GNU/Linux?

    Over the past couple of days various news sites and "Linux" sites expressed great satisfaction [1-5] over the passive embrace of Disney's DRM ploy (Disney+), even when Disney itself rejects DRM, seeing the harms practically caused by it [6,7]



  15. You Know WSL is Bad for GNU/Linux Because Anti-Linux People, Microsoft and Its Propagandists, Want People to Use That

    Microsoft and its boosters (and media partners) haven’t grown tired of spreading falsehoods to stigmatise and take control of GNU/Linux by creating their own versions and traps for it



  16. IRC Proceedings: Saturday, December 07, 2019

    IRC logs for Saturday, December 07, 2019



  17. 5 Years Ago the Linux Foundation Turned Linux.com Into a Non-Linux Site

    One can leverage the Internet Archive’s Wayback Machine to better understand how, over time, the Foundation called “Linux” deviated or diverged away from its mission statement for the sole purpose of raising corporate funds and selling influence to corporations (passing the community’s hard work to them — a form of tacit privatisation)



  18. Microsoft Redefining Ownership and Identity of GNU/Linux

    The idea that “Microsoft loves Linux” is as insane as it gets; but the lie which is “Microsoft loves Linux” is a powerful enabler of Microsoft entryism, e.g. if Greg steps down, does a Microsoft employee become the deputy of Linus Torvalds?



  19. Things That Cannot Be Said

    The limits on what we can say are mostly defined by what sources permit us to say publicly (for the sake of source protection)



  20. Fake European Patents (on Algorithms) Leading to Fake Embargoes

    Law firms have gotten their way in Germany; instead of supporting the productive workers the patent system is nowadays promoting the litigation 'industry' and it ought to be corrected



  21. From Moderate Advice to FUD and Misinformation: The Case of a VPN Vulnerability (CVE-2019-14899)

    What should have been a trivial bugfix in a variety of operating systems and bits of software — both proprietary and Free software — somehow became anti-Linux FUD, clickbait and worse



  22. Dangerous Thinker

    Society oughtn't be alarmed by people who say unusual things; it should be wary and sceptical of those corporations ever so eager to silence such people



  23. Unitary Patent (UPC) Died Along With the Credibility of Managing IP and the Rest of the UPC Lobby

    It is pretty astounding that Team UPC (collective term for people who crafted and lobby for this illegal construct) is still telling us lies, even in the absence of underlying supportive facts, and pressure groups disguised as "news sites" latch onto anything to perpetuate an illusion of progress (even in the face of a growing number of major barriers)



  24. IRC Proceedings: Friday, December 06, 2019

    IRC logs for Friday, December 06, 2019



  25. Links 7/12/2019: Fedora 31 Elections Results, Lots of Media Drama Over VPN Bug

    Links for the day



  26. Links 6/12/2019: DRM in GNU/Linux and Sparky Bonsai

    Links for the day



  27. The EPO Rejects Innovation

    The EPO ceased caring about the needs of scientists whose work involves invention; instead, EPO management crafts increasingly lenient guidelines that yield illegal European Patents (not compatible with the EPC) that heavily-besieged EPO judges are unable to stop



  28. Startpage CEO Robert Beens in 'Damage Control' Mode, Trying to Get Startpage Relisted After Selling to a Massive Surveillance Company

    PrivacytoolsIO is being lobbied by the CEO of Startpage to relist Startpage, based on no actual refutations at all



  29. IRC Proceedings: Thursday, December 05, 2019

    IRC logs for Thursday, December 05, 2019



  30. Links 5/12/2019: qBittorrent 4.2.0, Expensive Librem 5 and OpenBSD Bugs

    Links for the day


RSS 64x64RSS Feed: subscribe to the RSS feed for regular updates

Home iconSite Wiki: You can improve this site by helping the extension of the site's content

Home iconSite Home: Background about the site and some key features in the front page

Chat iconIRC Channel: Come and chat with us in real time

Recent Posts