It's really easy to critisize anything, including this report. But I would expect some alternative suggestions from the author of the article if he doesn't like the suggestions in the report.
Of course, a "dumb Linux user" would patch his system as rarely as a "dumb Windows user". But the difference is - if only half a world would use Windows, then no more than half a world would suffer from a single computer virus. Almost everybody suffered from I love you, etc.
Besides Microsoft/windows monopoly we should be aware that all multiplatform environments pose similar security risks, e.g. if .NET and Mono succeeds, then besides Windows computers, also Linux computers with Mono would be vulnerable to the same vulnerabilities.
In order to reduce the risk you don't have to install Linux on half of your enterprise's desktops. By using a different platform for different major components you can arrive to some positive effect without making it so hard for end-users. E.g. if you have Microsoft as your desktop software, use *nix for your e-mail server, and BSD for firewall. Of course it is a bit harder to manage different platforms, but it pays off if you look at it from risk management side.

[ reply ]

Link to this comment: http://www.securityfocus.com/comments/columns/190/23095#23095