VM-Based Rootkits Proved Easily Detectable
Some time ago it a number of researchers claimed that it would be possible for a virtual machine based rootkit to evade security software. It seems that's not quite the case.
Linux phishing botnet statistics can be deceptive
eBay's chief information security officer made a comment last week that most botnets are hosted off of compromised Linux machines. The above article refutes some of these claims.
"you security people are insane."
Linus makes some interesting points about various security systems in the Linux kernel. While his colorful comments are humorous, this makes a rather powerful statement. Linus says:
Schedulers can be objectively tested. There's this thing called
"performance", that can generally be quantified on a load basis.
Yes, you can have crazy ideas in both schedulers and security. Yes, you
can simplify both for a particular load. Yes, you can make mistakes in
both. But the discussion on security seems to never get down to real
numbers.
So the difference between them is simple: one is "hard science". The other
one is "people wanking around with their opinions".
This is a big problem. Security is hard to understand, so you end up with two different types of people causing trouble. There are people who don't really understand what they're doing. These are the people that say incorrect things and just make up what they don't know. There are also the people who will blatantly lie to further their own agenda. The hope is that the right solution will eventually win out, but that's not always the case.
