Comment Re:Security (Score 1) 289
First, "rwx" works for most use cases.
Second, ACLs were in Redhat AS3, which puts it back to 2003.
I'll even concede that Windows is secure now. But, my opinion is that it should be! (given how much it costs). My experience is with Unix.
Pretty much 24/7 people come a-knockin' at SSH. Trying user/password combinations. Quickly (which gets them blackholed) or slowly.
Even my Linux XBMC box gets thousands of attempts a day.
I imagine that Windows gets it worse. Using a small percentage OS that covers the functions I need? Is a good thing. Sure, obscurity isn't security, but I do know how to harden the boxes I deploy. At least to the level needed.
Windows needs to be a whole lot "harder" out of the box. People get it on new computers. I know I do! People with no knowledge or experience in security.
Who want to "download" and gleefully poke holes in the router. At least, until a standard was devised to allow programs I consider untrusted to do the poking for them. Then, to find exploits in those routers... possibly (wearing a black hat) allowing snooping of local traffic, and injection of bad packets. Why not?
Still not going to bother me any, and, no, I don't bother with ACLs in most circumstances. Simply, by the time the ACL would help is far too late anyway.
If I control your router, and your router attached storage, I really don't care about your computer anymore.
Which brings us back to Linux and BSD. And, our aforementioned group that simply deploys with no deeper understanding.
I am very glad that Microsoft has made money. I have a financial interest in them (no, I don't have a stake in Redhat).
Why? Microsoft gets to move a unit of Windows for just about every home PC. (I bought some Acer Veriton 282G units that didn't come with Windows, but, in general, this hold true).
I would prefer that my Fedora/whatever boxes remain somewhat obscure. I would like router vendors to be more open (specifically, support flashing third party firmware without voiding hardware guarantees).
Rant is over. Resume your regular