Well, I can't possibly address ALL of your irrelivent uneducated statements or lies, but I will try a few:

"...you wouldn't be able to charge your customers exorbitant fees for cleaning up a M$-promulgated mess" - Well, this is very much dependant on the administrator of the network in question. Yes, there are bad administrators out there that do not know how to configure a working network properly. I would argue that those exist within the Linux community as well.
------------------------
"...just think, in a M$-free world we could devote our energies to making something new." - Again, maybe you do not know how to configure a working windows global infrastucture, the flaws are not in the opsys but in the administrators who set them up. Many large organizations, including the one I work for, have an almost zero user-support staff, because everything is centrally managed from one office.
------------------------
"Exchange 2000 Server is a perfect example - it won't even install if you aren't running the NNTP service" - In the initial install phase, yes, you need NNTP - after that, you can disable and remove it. Another perfect example of a lack of understanding and knowledge.
------------------------
"It's easier to set all sorts of odd little permissions structures up in the ACL world, but it's also easier - a LOT easier - to accidentally make something accessible (or inaccessible) that shouldn't have been, somewhere in the tangled mess of inherited permissions." The permissions are what you set them, they do not automagically changes. Domain policies are meant to be inheritable, is that not
the purpose of a centralized security managmenet platform? If you do not know how to set permissions, don't assume everyone else doesn't.
------------------------
"it's a hell of a lot more difficult to effectively administer an MS server even if you ARE the administrator" -If you can't administer a network, you shouldn't be an administrator. No, it is not difficult, maybe to you it is though.
------------------------
"Windows have no security mechanism for protecting you against an unknown security incident." - Well, I'll take you're example of IIS - IIS has a tool now called "URLScan", which can weed out any requests made to your webserver and drop them - an extension of IIS. Funny, but this would seem to do the trick. I've said it once, and I'll say it again, please base your ridiculus comments on facts.
------------------------
"Can you believe that I'm certified by Microsoft ? Yes I am. But I switched to Unix because I had no control in Windows but had it in Unix." - Actually, yes I can believe it. Most MCSE's are retards, I'll admit. Don't knock the operating systems because of the administrators who admin them.
Overall, most, if not all of you're arguments towards why windows cannot be secured are ridiculus. You all display a complete lack of understanding and professionalism.

[ reply ]

Link to this comment: http://www.securityfocus.com/comments/columns/127/17351#17351