Linked by Eugenia Loli on Wed 8th Dec 2004 20:48 UTC, submitted by Nicholas
Editorial I just spent the last several days reading the lengthy essay "Ying and Yang of Security" which explores the origins of security on the personal computer and explains why the current models are outdated. It seems to argue that security systems designed to keep the system safe are relics of the days of mainframes when the system was more important than the user, but for a personal computer the user is more important than the system.
Permalink for comment
To read all comments associated with this story, please click here.
Re: How the *nixes will be the next target.
by dpi on Thu 9th Dec 2004 21:03 UTC

Good point although i've never seen a virus for *NIX. I've seen worms and trojans though. Actually, the first worm on the Internet was a Sendmail worm in 1989.

I call 'Emacs versus VI' here. The problem is that Realplayer should not be allowed to execute say /bin/ls because its normally of no use unless the user says so. It shouldn't have that capability. Another example is, the browser should not be able listen to a port and spawn a shell to someone who connects to and types in a password unless the user says so precisely because its normally of no use. Users don't use Gopher anymore, so why enable support for this protocol by default? Even proclaimed secure OSes such as OpenBSD do not apply these basis security measures by default.

PS: 3rd party plugin for ActiveX support in Mozilla exists.