test basement

Windows is inherently harder to secure than Linux 라는 Richard Stiennon 씨의 이야기...


첫째 사진은 LINUX로 Apache 를 사용할때의 system call 그림이고,
둘째 사진은 WINDOWS로 IIS - 인터넷 정보 서버 [ Internet Information Server ] - 를 사용할 때의 그림이다.

얼핏 봐도 복잡해 보이지 않는가..?
그러면.. 한 곳의 취약점이나 문제가 발생할 시에 연계되어서 일어나는 취약점등....은..?
(한곳이 이상이 생겨서 system 에 해악이 된다면, 관련 연결되어 있는 곳이 그것으로 함께 동반 이상을 일으킬 수 있다는 것이다..;; )

생각만 해도 끔직하다..;;;;



출처 :
http://blogs.zdnet.com/threatchaos/?p=311

--------------------------------------------------------------------------------------------------

Windows is inherently harder to secure than Linux. There I said it. The simple truth.

Many millions of words have been written and said on this topic. I have a couple of pictures. The basic argument goes like this. In its long evolution, Windows has grown so complicated that it is harder to secure. Well these images make the point very well. Both images are a complete map of the system calls that occur when a web server serves up a single page of html with a single picture. The same page and picture. A system call is an opportunity to address memory. A hacker investigates each memory access to see if it is vulnerable to a buffer overflow attack. The developer must do QA on each of these entry points. The more system calls, the greater potential for vulnerability, the more effort needed to create secure applications.

The first picture is of the system calls that occur on a Linux server running Apache.

See larger image here.

This second image is of a Windows Server running IIS.

See larger image here. A picture is worth millions of words.

Thanks to Sana Security for generating and providing these images.