OS X, iOS and Linux have more vulnerabilities than Windows
Praxius @ Tue Feb 24, 2015 4:49 am
http://betanews.com/2015/02/22/os-x-ios ... n-windows/
$1:
It might come as something of a surprise, but Windows is more secure than not only Apple's iOS and OS X, but also Linux. I'll just let that sink in for a moment...
Windows, the operating system ridiculed for its vulnerabilities and susceptibility to viruses is actually more secure than the supposedly Fort Knox-like Linux and OS X. This startling fact comes from the National Vulnerability Database (described as the "US government repository of standards based vulnerability management data") which details security issues detected in different operating systems and software titles.
The NVD has some revealing statistics for the number of vulnerabilities that were reported in each of the operating systems and GFI Blog has crunched the numbers; many will be surprised to find that Windows is not at the top of the list. In fact, in 2014 it is OS X that was found to be riddled with the greatest number of security problems -- 147 in total, including 64 rated as high severity, and 67 as medium. Also from the Apple stables, iOS did not fare all that much better: 127 vulnerabilities including 32 high and 72 with a medium rating.
The latest version of Windows -- Windows 8.1 -- was found to have 36 vulnerabilities, and its predecessors -- Windows 8 and 7 -- both had the same number. For enterprise users, Windows Server 2007 and 2008 both have 38 vulnerabilities. Windows is reported as having no vulnerabilities of low severity; they cluster under the medium and high labels.
Overall, there has been a huge increase in the number security vulnerabilities in the database. In 2013 the number stood at 4,794, but this shot up to 7,038 in 2014. A lower percentage are rated as high severity, but the number has still increased.
While it is the vulnerabilities linked to individual operating systems that are probably most attention-grabbing, the main problem still lies with third-party software. 83 percent of reported vulnerabilities were to be found in applications, compared to 13 percent in OSes and 4 percent in hardware.
Microsoft might celebrate coming ahead of Apple and Linux in one department, but Internet Explorer was found to be the most insecure web browser. IE had 242 vulnerabilities, compared to 124 in Chrome, and 117 in Firefox.
Windows, the operating system ridiculed for its vulnerabilities and susceptibility to viruses is actually more secure than the supposedly Fort Knox-like Linux and OS X. This startling fact comes from the National Vulnerability Database (described as the "US government repository of standards based vulnerability management data") which details security issues detected in different operating systems and software titles.
The NVD has some revealing statistics for the number of vulnerabilities that were reported in each of the operating systems and GFI Blog has crunched the numbers; many will be surprised to find that Windows is not at the top of the list. In fact, in 2014 it is OS X that was found to be riddled with the greatest number of security problems -- 147 in total, including 64 rated as high severity, and 67 as medium. Also from the Apple stables, iOS did not fare all that much better: 127 vulnerabilities including 32 high and 72 with a medium rating.
The latest version of Windows -- Windows 8.1 -- was found to have 36 vulnerabilities, and its predecessors -- Windows 8 and 7 -- both had the same number. For enterprise users, Windows Server 2007 and 2008 both have 38 vulnerabilities. Windows is reported as having no vulnerabilities of low severity; they cluster under the medium and high labels.
Overall, there has been a huge increase in the number security vulnerabilities in the database. In 2013 the number stood at 4,794, but this shot up to 7,038 in 2014. A lower percentage are rated as high severity, but the number has still increased.
While it is the vulnerabilities linked to individual operating systems that are probably most attention-grabbing, the main problem still lies with third-party software. 83 percent of reported vulnerabilities were to be found in applications, compared to 13 percent in OSes and 4 percent in hardware.
Microsoft might celebrate coming ahead of Apple and Linux in one department, but Internet Explorer was found to be the most insecure web browser. IE had 242 vulnerabilities, compared to 124 in Chrome, and 117 in Firefox.
Well there goes that wives tale.
DrCaleb @ Tue Feb 24, 2015 9:29 am
Interesting bias. OSX, iOS and Linux are 3 different operating systems, by 3 different maintainers. Yet, they lump the vulnerabilities together.
They also don't take into account severity. 24 'high' priority vulnerabilities in the Linux kernel, but none of them are 'remote root' exploitable. Whereas, 4 of the Windows 8.1 vulnerabilities that affect Windows 2008 -> 8.1 are remote Administrator vulnerabilities.
$1:
While it is the vulnerabilities linked to individual operating systems that are probably most attention-grabbing, the main problem still lies with third-party software. 83 percent of reported vulnerabilities were to be found in applications, compared to 13 percent in OSes and 4 percent in hardware.
And then there is that nugget. You can't really blame a vulnerability that HP creates on Linux Kernel or Windows maintainers now, can you?
Praxius @ Tue Feb 24, 2015 1:07 pm
Guess you missed my other thread in here
DrCaleb @ Tue Feb 24, 2015 1:16 pm
Nope. Guessed you missed the thousands of other time the open source community has pointed to flaws in Microsoft (and other closed source) software and included ways to fix them.
Open Source will always triumph over closed because of the speed at which patches are issued, and the eyeballs always looking out for serious vulnerabilities. Closed source only has the motivation of profit and liability to consider, which is why they let the vulnerabilities through in the first place.
Praxius @ Tue Feb 24, 2015 1:32 pm
computer-internet-f5/microsoft-finds-critical-bug-that-hurts-most-recent-linuxes-t111739.html
Yup keep dreaming the dream.
A MS Employee found this little nugget, informed the Linux eyeballs of it and even provided the patch.
As for Internet Explorer, IE is being replaced with a new browser anyways.
And as for other Linux issues
http://www.cio.com.au/article/565181/gh ... -php-apps/
And there have been plenty more but I'm off to work. A quick google can find all the others.
You obviously didn't look into anything and merely rely on the age old belief about open source being the most secure, when in reality the facts above prove otherwise.
They lumped all the vulnerabilities together from different OS's?
Of course they did... It was a study on different vulnerabilities from each OS. Exactly how does that disqualify the fact that Mac and Linux OS's are more riddled with holes and exploits than Windows?
It doesn't.
But change your goal posts as much as you want. It's not going to make you any safer.
OnTheIce @ Tue Feb 24, 2015 1:36 pm
Praxius Praxius:
But change your goal posts as much as you want. It's not going to make you any safer.
![[B-o]](./images/smilies/drinkup.gif "Drink up")
Public_Domain @ Tue Feb 24, 2015 1:43 pm
DrCaleb @ Tue Feb 24, 2015 2:23 pm
Praxius Praxius:
http://www.canadaka.net/forums/computer-internet-f5/microsoft-finds-critical-bug-that-hurts-most-recent-linuxes-t111739.html
Yup keep dreaming the dream.
A MS Employee found this little nugget, informed the Linux eyeballs of it and even provided the patch.
As for Internet Explorer, IE is being replaced with a new browser anyways.
Yup keep dreaming the dream.
A MS Employee found this little nugget, informed the Linux eyeballs of it and even provided the patch.
As for Internet Explorer, IE is being replaced with a new browser anyways.
Like I said, I didn't miss your thread. I just wasn't falling for the bait.
A Google employee warned Microsoft of this little nugget months ago:
$1:
In short, Google communicated the found flaw to Microsoft on September 30, and according to policy publicly disclosed the defect 90 days after. Microsoft had 90 days to fix the glaring issue, but unfortunately the software company had its own patching problems to counter. As we've all read, seen, and felt, Microsoft's patching program is broken, causing customers severe pains each month with wrecked software and systems that would blue screen and stopped booting. The company spent much of its time fixing patches and was probably caught up and distracted from the flaw reported by Google.
http://windowsitpro.com/security/micros ... ing-policy
There are just so many examples of the Open Source community letting Microsoft know of vulnerabilities in their software, it doesn't offset the one time Microsoft reciprocates.
Praxius Praxius:
$1:
It was fixed in glibc-2.18, released in May 2013, but it wasn't flagged as a security vulnerability at the time.
And the problem is . . that it was fixed 2 years ago?
Praxius Praxius:
You obviously didn't look into anything and merely rely on the age old belief about open source being the most secure, when in reality the facts above prove otherwise.
You obviously assume I'm saying things I'm not. Go back and read what I wrote again.
Praxius Praxius:
They lumped all the vulnerabilities together from different OS's?
Of course they did... It was a study on different vulnerabilities from each OS. Exactly how does that disqualify the fact that Mac and Linux OS's are more riddled with holes and exploits than Windows?
It doesn't.
Of course they did... It was a study on different vulnerabilities from each OS. Exactly how does that disqualify the fact that Mac and Linux OS's are more riddled with holes and exploits than Windows?
It doesn't.
Yes, they did. From the headline of the thread, they are making the reader think that Windows has less vulnerabilities than those other operating systems, when their chart shows only Vista and RT have fewer (by one) in the high category, and they completely neglect that none of the 'high' category vulnerabilities allow 'root' access remotely, where a number of the Windows vulnerabilities allow such access remotely.
Praxius Praxius:
But change your goal posts as much as you want. It's not going to make you any safer.
Posts haven't changed. Open Source fixed vulnerabilities faster than Windows. Always has, always will. Open Source software still has the fewest (if any) remote administrative exploits compared with commercial software.
But keep thinking commercial software is more secure than open source! That's a pretty rare thing, and I don't think the average user will be willing to shell out millions for the latest mini-computer just to have some confidence.
mmh @ Tue Feb 24, 2015 3:04 pm
When I want to add one iCloud account on my iPhone I find a problem on my iPhone. The number of maximum free account have used on this iPhone. I cant active my iCloud accout on my iPhone. now what can I do????
raydan @ Tue Feb 24, 2015 3:31 pm
I suggest that you activate your iCloud account on your iPhone.
saigal @ Tue Feb 21, 2017 2:45 am
I think you need to active iCloud on your iPhone
raydan @ Tue Feb 21, 2017 3:25 am
I think you need to deactivate your account before someone does it for you. 