More Rebuttals to Latest GNU/Linux Security FUD

Dr. Roy Schestowitz

2010-06-16 09:08:38 UTC
Modified: 2010-06-16 09:08:38 UTC

Summary: Linux backdoor? Not so fast, say people who are familiar with the issue

THIS subject has come up quite frequently in the IRC channel. We addressed this in a previous post, but in the interest of FUD-fighting, here's more:

i. Gnu/Linux Infection Is Unreal

Windows world is still the same, nothing has changed from security point of view other than more bloated systems. The entire security industry thrive on Windows platform -- if there is no Windows there is no security industry. Security firms hate Gnu/Linux, they love Windows, they want Windows – to survive.

There is no lesson to be learned from Windows peers, if you know the nature of this flaw, it is quite different from the flaws of poros Windows Machines.

So what happened here? Some cracker wrote a virus and send it to you through an email and you installed it by clicking on it? No, nothing as dramatic as it happens in Windows world. It was actually so boring you may not even want to read it.

ii. Trojaned App Demonstrates Need for Better Practices, Not More FUD

The Unreal team handled it pretty well, in my opinion. They embraced the suck and made a clear announcement free of blame or denial--an announcement that also pointed out how to confirm the trojaned version and how to replace the trojaned version with the clean version. This is not, I should emphasize, the worst exploit ever: "This backdoor allows a person to execute any command with the privileges of the user running the ircd. The backdoor can be executed regardless of any user restrictions (so even if you have passworded server or hub that doesn't allow any users in)."

iii. Rootkits: Hiding in Windows shadows

While rootkit problems still exist in Unix and Linux, they're far more common in Windows. That's in part because the Unix operating family has many built in system monitoring and logging tools. In other words, while Unix and Linux can be attacked this way, it's a lot harder to pull off without leaving tracks.

This hopefully provides 'ammunition' for those who come across the latest bit of FUD that Microsoft boosters use against GNU/Linux in their blogs. They hope to suppress migrations to GNU/Linux (like Google's) which are motivated by security. ⬆

Brett Wilson LLP Sent Over 5 Kilograms (or Over 12 Pounds) of Legal Papers! Because Writing About Microsoft Abuses is 'Illegal'.: How do you guys sleep at night? On a big pile of Microsoft money?
Extremism as a Weapon Against GNU/Linux (Microsoft Lunduke): He ought to know the Halloween Documents. Wasn't he a Microsoft employee when these came out?
Gemini Links 09/07/2025: Extreme Testing and Golang Documentation in Geminispace: Links for the day
Vice President of the European Patent Office (EPO) Complains That Techrights Gives Visibility to Legal and Technical Issues at the EPO: "Follow-up on enquiries relating to Dir. 1218 and 1001"
Slopwatch: linuxsecurity.com and Various Slopfarms That Lie About "Linux" and Are Promoted by Google News: Google does not seem interested in tackling this problem
Links 09/07/2025: War Updates and Microsoft Moving to India to Cut Costs: Links for the day
GNU/Linux Was Always a 'Movement' of Inclusion of Tolerance: Even the licences themselves remove access barriers
Links 09/07/2025: "Subprime AI Crisis" and "OpenAI May Be in Major Trouble Financially": Links for the day
Huge Piles of Legal Papers ('Paper DDoS') Do Not Impress Judges and Regulators: they just make judges and regulators even more suspicious of the eagerness to resort to 'paper DDoS'
Lunduke Isn't Even Hiding His Anti-Linux Agenda (From "Linux Sucks" to "Linux is Pedophiles"): just trying to make a lot of trouble
Some People Use Computers to Get Actual Work Done: Tolerance and inclusion must extend to acceptance that some people don't agree with you, might never agree with you, and imposing what allegedly works for you on them is unreasonable
Example of "Old" Things That Still Work: The notion that something being "old" implies it must be discarded is typically advanced by those looking to sell more of something
Some Scheduled Maintenance Later Today: Typically the most vulnerable service during short interruptions is IRC
Computers Are Just a Tool: People don't get married because they love weddings, folks don't join the army because they love war, and most drivers don't drive to work because they love cars
Apple Way Past Its Prime: Apple deserves a decline
The FSF's SysOps Team Recovered From Serious Hardware Issue Within Hours: About half a day ago I noticed that all/most GNU/FSF sites were not reachable and thus reached out to a contact for any details
Over at Tux Machines...: GNU/Linux news for the past day
IRC Proceedings: Tuesday, July 08, 2025: IRC logs for Tuesday, July 08, 2025
Slopwatch: Turning Bugs Into FUD About "Linux", Getting Basic Facts Wrong: all the screenshots are of fake articles; we don't want to link to any
Technical Reasons, Not Politics: With Wayland "it feels a lot like Linux from 20-25 years ago, which is horrendously frustrating, because it feels like we wasted one or two decades of progress and stability": Lately, quite a few benchmarks were published to show Wayland compares poorly compared to what we had
PCLinuxOS Recovering From Fire: It looks like a nightmare scenario, where even backups onsite get destroyed
Links 09/07/2025: More Heatwaves, Officials Culled in Russia: Links for the day
Gemini Links 09/07/2025: XScreensaver and Resurrection: Links for the day
Links 08/07/2025: "Cyberattack Deals Blow to Russian Firmware" and "Cash Remains King": Links for the day
FSF40 T-shirt message: by Alex Oliva
Gemini Links 08/07/2025: Creativity, Gotify with NUT Server, and Sudo Bugs: Links for the day
More on "Lunduke is Actually Sending His Audience to Attack People": "pepe the frogs"
Links 08/07/2025: Sabotage of Networking Infrastructure, Microsoft XBox Game Pass Deemed “Unsustainable”: Links for the day
Dalai Lama Succession as Evidence That Determined, Motivated People Can Reach Their Nineties: And we need to quit talking about their death all the time
Many Lawyers (for Microsoft) and 1,316 Pages to Pick on a Litigant in Person Who Exposed Serious Microsoft Abuses: Answers must be given
Gemini Links 08/07/2025: Ancillary Justice and Small Web July: Links for the day
Over at Tux Machines...: GNU/Linux news for the past day
IRC Proceedings: Monday, July 07, 2025: IRC logs for Monday, July 07, 2025
Layoffs and Shutdowns at IBM, Not Just Microsoft: Same as Microsoft
The FSF's (Free Software Foundation, Inc.) 2025 Summer Fundraiser Already Past Halfway Line: This is where GNU/Linux actually started
With Workers Back From a Holiday Weekend, Microsoft Layoffs Carry on, More Waves to Come: Now it's Monday and people are bad to work, even some journalists
Mozilla Had No Good Reason to Outsource Firefox Development to Microsoft: What does Mozilla plan to do when GitHub shuts down?
Mozilla Firefox Did Not Die, It Got Killed: To me it'll always look like Mozilla got killed by its sponsors, especially Google, which had a conflict of interest as a sponsor
You Need Not Wave a Rainbow Flag This Month to Basically Oppose Arseholes Looking to Disrupt and Divide the Community: Don't fall for it
Dan Neidle, Whom Brett Wilson LLP SLAPPed (on Behalf of Corrupt Rich Tax Evaders), Still Fighting the Good Fight: Neidle fights for the poor people
What Miguel de Icaza and Microsoft Lunduke Have in Common: Similar aims, different methods
Wayland Should Start by Dumping Its Very Ugly Logo: Wayland wins the "ugliest logo" award every year
Stop Focusing on Hair Colours, Focus on Corporate Agenda: If someone commits a crime, it does not matter if his or her hair was mostly white or there was no hair or a wig or whatever
Links 07/07/2025: Science, Conflicts, and a Fictional K-pop Group: Links for the day
Gemini Links 07/07/2025: Being a Luddite and Announcement of Gotify: Links for the day
Links 07/07/2025: XBox Effectively 'Dead', DMCA Subpoena Versus Registrar: Links for the day
The 'Corporate Neckbeard' is Not the "Good Guy": Works for IBM
The Nasty Smear (and Stereotype) of "Neckbeard" or "Greybeard" is Ageism: This is the sort of stuff they might try to volley at critics of Wayland
Why Many of Us Use X Server and Will Continue to Use It For Many Years to Come: Don't make this about politics
Microsoft's Nat Friedman Became Unemployed the Same Time the SLAPPs Against Techrights Started Coming From His Friends (Weeks After We Had Exposed Scandals About Him and the Serial Strangler, His Best Friend, Who Got Arrested a Few Days Later): Nat Friedman is not "Investor, entrepreneur"
Brett Wilson LLP Uses Threats to Demand Changes to Pages or Removal of Pages Without Even Revealing Which Staff Member Does That (Sometimes People From Another Firm!): This has been in the public for years
Dan Neidle Said "It Really Then Became a Job of Tormenting" Lawyers Like Brett Wilson LLP (Who Threatened Him for Exposing Crimes, Just Like They Threatened My Wife a Few Months Later): he and his wife decided to take on the evil people and their evil lawyers
Large Language Models (LLMs) Externalise Their Cost to the Free Software Foundation (FSF): "The forty-sixth Free Software Bulletin is now available online!"
Weeding Out Extremism in Our Community: To me it seems like Microsoft Lunduke is rapidly becoming like a "hate preacher" who operates online, breeding an extremist ideology or trying to soften its image
Censorship Versus Fact-Checking and Quality Control: It's not censorship but a matter of quality control
Reinforcing the Allegations Some More, Bryan Lunduke Digs His Own Grave: In his latest episodes he merely repeats his own lies, which I debunked using evidence right from his own mouth
Global Warming and Free Software as a Force of Mitigation: we'll need to think about Software Freedom, not just brands like "Linux"
Over at Tux Machines...: GNU/Linux news for the past day
IRC Proceedings: Sunday, July 06, 2025: IRC logs for Sunday, July 06, 2025
Gemini Links 07/07/2025: BaseLibre Numerical System and TUI Rant: Links for the day

More Rebuttals to Latest GNU/Linux Security FUD

Recent Techrights' Posts