Re: [linux-5] Moving back to Windows from Linux?

From: Wong Boon H.
Sent on: Monday, October 31, 2011 10:51 AM
Hi Anton,

You will be very surprised how ignorance end users can be. For I can assure you that they will open executable files despite many reminders not to do so out of curiousity. Some attachments are clever enough to put multiple extension such that my_secret.doc.exe to make end user believe that it is just a doc file. There are also scr and pif infection that are not obvious to the end users. Infection thru email is the top issue for most companies, not unpatched system.

Moreover, most vulnerabilities, as you have stated, are desktop software such as Acrobat/Office and even Java and web browsers. Servers usually do not have these installed or used directly.
 
Boon Hong

From: anton_kg <[address removed]>
To: [address removed]
Sent: Saturday, 29 October[masked]:56 PM
Subject: Re: [linux-5] Moving back to Windows from Linux?

On 27 October[masked]:46, Wong Boon Hong <[address removed]> wrote:
> Most of our attacks is the result of our end users opening infected email
> attachments. (fyi, we have migrated our email server to Zimbra (It's free!)
> running on Ubuntu server. It's really impressive!)
> There is zero attack due to unpatch system so far. So I really think the
> patch issue is over-hype by security companies to boost their products sales

I don't agree. There is a big difference between "attachments". I'm
sure end users don't open executable files and it should be nothing
wrong with opening JPG/PDF/DOC/XLS/etc (with the exception of zero day
vulnerabilities) files. However, most of viruses are using well knows
vulnerabilities in desktop software such as Acrobat/Office. All these
viruses are targeting unpached software in order to execute the code
on the victim's computer. The same goes to servers. Attackers always
look for the weak chain in your system: well known vulnerabilities and
existing exploits would be the easiest way to your network.



--
Please Note: If you hit "REPLY", your message will be sent to everyone on this mailing list ([address removed])
http://www.meetup.com/sg-linux/
This message was sent by anton_kg ([address removed]) from The Singapore Linux Meetup Group.
To learn more about anton_kg, visit his/her member profile: http://www.meetup.com/sg-linux/members/4500727/
To unsubscribe or to update your mailing list settings, click here: http://www.meetup.com/sg-linux/settings/
Meetup, PO Box 4668 #37895 New York, New York[masked] | [address removed]



People in this
Meetup are also in:

Sign up

Meetup members, Log in

By clicking "Sign up" or "Sign up using Facebook", you confirm that you accept our Terms of Service & Privacy Policy