LWN.net Logo

Not logged in

Log in now

Create an account

Subscribe to LWN

Sponsored link

Vyatta – Linux & Open Source Alternative to Cisco – Advanced Routing, Firewall, VPN, QoS..
Free Download ->

Recent Features

LWN.net Weekly Edition for September 4, 2008

The Kernel Hacker's Bookshelf: UNIX Internals

DRI, BSD, and Linux

SCHED_FIFO and realtime throttling

LWN.net Weekly Edition for August 28, 2008

Printable page
Weekly edition Kernel Security Distributions Search
Archives Calendar Subscribe Write for LWN LWN.net FAQ

Linux: security through obscurity?

Linux: security through obscurity?

Posted Nov 11, 2004 16:55 UTC (Thu) by rgmoore (subscriber, #75)
In reply to: Linux: security through obscurity? by james
Parent article: Linux: security through obscurity?

I suspect that a lot of the security engineering is going to have to be usability engineering: making the easy way the safe way, and the safe way the easy way.

And I think that the author has the correct general approach to that problem, too; ensure that there are enough Free Software alternatives included with the distribution. Comprehensive distributions like Debian and Gentoo have enormous libraries of software available, and it's probably easier to install that software through apt or emerge than it is to download and install a package from a third party site. It's always possible that the distro will make a mistake and include a malicious package, but it does provide a much higher barrier to trojan-type malware than if users are installing random programs off the net.

(Log in to post comments)

Copyright © 2008, Eklektix, Inc.
Comments and public postings are copyrighted by their creators.
Linux is a registered trademark of Linus Torvalds