Bonum Certa Men Certa

Nearly 40 Years Without Security Incidents

posted by Roy Schestowitz on Nov 03, 2024

Wires

LATER THIS week (on Thursday) this site turns 18 and we've already bought some party kits for the sister site's 21st anniversary. Next year the combined age - the age of both sites - will be 40. Over the years the sites ran Gentoo, Debian, CentOS, and Alpine.

In all this time we've never suffered a breach (security incidents) and since upgrading to Debian 12 we've hardly had to endure DDOS attacks. Aside from increased capacity owing to static pages replacing WordPress, Drupal, and MediaWiki, there are also some firewalling mechanisms that obstruct abusive bots and botnets.

Speaking for myself, I never ever had security incidents on my desktops/laptops. In my childhood, way back in the DOS days, there would be the occasional "rogue" floppy disk with a virus on it, but that predates the Web and viruses could not pass from one computer to another wirelessly or over a network cable (which most homes did not have at the time). As this predated hard-drives (for most people), a virus would be hard to transmit from one program to another (except RAM) and many boiled down to pranks, not ransom, extensive data loss, or permanently damaged hardware.

People who use Windows have come to sort of "accept" that security incidents are part of life or "normal". Disaster is always "imminent" and "unavoidable" (inevitable). At my last employer we saw clients' systems suffering security incidents (reasons varied), as did the last university I worked for. GNU/Linux isn't invulnerable to 'Windowsheads' assigned to manage it. Yes, a common pattern was neglect and mismanagement; misconfiguration was one symptom. One client put JBoss on Windows. Yes, Windows!! All the other machines (back end) ran GNU/Linux. This boiled down to an old technician (in his 60s) who used Microsoft for everything, even for his E-mail!

People who know how to run GNU/Linux (and not just reboot any time something goes wrong) can use it safely for many years. In my case, my two primary laptops have already had a combined uptime of 700+ days. And yes, those are safe. The world-facing (e.g. over SSH) machine is fully patched and was last rebooted (for a new kernel) about a week ago. It runs Debian 12.

The Microsoft-funded (e.g. by "ads") media likes to claim that "Linux" is not secure, but it often boils down to GPL violations or appliances/servers running Linux (or other key packages) that's years out of date while connected to the Net, sometimes needlessly. Not every machine needs to be accessible by anyone on the Net; or facilitate printing by every/any random IP address, even from North Korea.

3 years ago Dr. Andy Farnell said that "We Can't Teach Cybersecurity" in today's universities. He explained that real security practices are verboten or ridiculed, whereas snake-oil and charlatans take their place. Revisit what he wrote this past summer about "Clown Computing". This issue isn't limited to Microsoft, even if Microsoft remains the "worst of breed".

Other Recent Techrights' Posts

Microsoft Ends Support for Vista 10, So Relative Share of Vista 10 Goes Up, Vista 11 is Down
For 2 months in a row already
Microsoft's Latest 'Novel' Approach, Trying to Prevent People Moving Away From Microsoft and From Windows
ads say a lot about their business strategy
Microsoft-sponsored "The New Stack" Publishing Microsoft Windows Articles in "Linux" Clothing
Just sayin'...
 
'Remote' (From Home) Tech Workers Are More Productive for a Lot of Reasons
The Bezos-owned media should disclose its conflict of interest here
Over at Tux Machines...
GNU/Linux news for the past day
IRC Proceedings: Sunday, December 08, 2024
IRC logs for Sunday, December 08, 2024
[Meme] Write Code, Not Social Control Media
don't forget to 'like'
No Wonder Microsoft's LinkedIn and Github Have So Many Layoffs, Permanent Office Closures
Traffic down, losses, probably never going to profit
When Python is Basically Run by a 'Microsoft-Friendly' Mole Who Ousts People That Actually Contributed a Lot to Python for Many Years
Removing some of the best people
Syria: Microsoft Windows Down to 8% "Market Share" (It Was 99% Just 15 Years Ago)
it was even measured at less than 5% earlier this year
Links 08/12/2024: Boeing Leaks and Bluesky’s Business Model Dilemma
Links for the day
Gemini Links 08/12/2024: UK Winds and Ultraviolet Grasslands (UVG)
Links for the day
Links 08/12/2024: Conflicts, Misinformation, and Gutting of the Media
Links for the day
Over at Tux Machines...
GNU/Linux news for the past day
IRC Proceedings: Saturday, December 07, 2024
IRC logs for Saturday, December 07, 2024
Czech Republic: GNU/Linux Jumps Above 4%
data from the Czech Republic for 2024
IBM Engagement Surveys "Are Usually Useful for the Executives So They Know Which Things to Ignore"
This impacts Red Hat as well
Did Microsoft 'Write' (by Chatbots) This 'Article' About WINE?
The Web is drowning in garbage
Dictatorship Formalised: Python Software Foundation Violates Its Very Own Code Of Conduct (COC) or Code Of Censorship
Incoming Python Software Foundation Executive Director, Deb Nicholson, allegedly uses COCs to get ahead while violating COCs
[Meme] 'Self-Checkout' (and Banking 'Apps'): Passing All Accountability to the Customers
Stealing
Gemini Links 07/12/2024: Leasehold and NNTP
Links for the day
Fun Statistics About Techrights (Almost a Quarter Million Files)
Here are some raw numbers
PIP (Performance Improvement Plan) as an Instrumental But Largely Hidden (From the Public) Extra Layer of IBM's Workforce Reductions
The morale at IBM is really bad
Microsoft Money: From Bribing Bloggers to SLAPPing Bloggers
Microsoft money, different strategy?
Belgium: Windows Falls to Quarter of the Market, Mobile Devices Outsell or Overtake Desktops/Laptops on the Web
Microsoft has no operating system for 'smartphones'
Links 07/12/2024: CALEA Back Doors Backfiring, Fentanylware's (TikTok) U.S. Ban a Step Closer
Links for the day
statCounter: GNU/Linux Rises Sharply to All-Time High in Republic of South Korea
Notice how sharp the rise is!
It's FOSS? No, It's SPAM.
Another sellout
Another Massive Blow to the Web
This is awful news and it neatly relates to topics that we covered this morning
All the Latest Five Blog Posts at OSI's Blog Are Written by a Microsoft Operative Salaried by Microsoft
"Open Source" no longer means anything
Legacy of a Dying World Wide Web
Many people truly believe they're "stars" in social control media
Google Does Not Have a Search Engine Anymore
Google wants to "retain" users for more "screen time" and influence over their minds; it does not save you time, it's manipulating you
[Meme] Automattic: Host With Automattic, We'll Handle Our Own Complexity for You
The RHEL modus operandi (more so with systemd)
Finding Peace With Less
There seems to be a growing consensus (speaking to other editors helps confirm this) that the Web is going in a very bad direction
Links 07/12/2024: DEI Chopped by University of Michigan, French and South Korean Governments in Turmoil
Links for the day
Over at Tux Machines...
GNU/Linux news for the past day
IRC Proceedings: Friday, December 06, 2024
IRC logs for Friday, December 06, 2024