Search Perform an advanced search query SOFTPEDIA
 
SOFTPEDIA
Updated one minute ago
HomeSubmit a program for being reviewedAdvertise on our websiteGet help on surfing our websitesSend us your feedbackGet information about our XML/RSS backend and how to use itBrowse the news archiveVisit our discussion forumVizitati forumul in limba romana



KLIP
  1. HOME
  2. SCIENCE
  3. TECHNOLOGY
  4. WEBMASTER
  5. SECURITY
  6. MICROSOFT
  7. LINUX
  8. APPLE
  9. GAMES
  10. TELECOMS
  11. REVIEWS
  12. LIFE & STYLE
  13. EDITORIALS
  14. INTERVIEWS
  15. RSS
Welcome!
Hello, Guest

Login if you have a Softpedia.com account.

Otherwise, register for one.

EDITORIALS

Windows vs. Linux vs. Mac OS X

- Ignorance is bliss...

By: Marius Oiaga, Technology News Editor

There has been a consistent amount of "ink" spilled over comparing Windows, Linux and Mac OS X this month. The reports have generated some controversy, because they point out that Windows
delivers a more secure platform than Linux and Mac OS X. For some, this simply appears to defy the "logic" that has been proliferated by marketing campaigns from Linux and Apple. Microsoft's own marketing campaigns always tout the latest Windows version as the most secure Windows platform to date, Linux and Apple just top that by offering an even more secure operating systems than Windows.

There is the general customer perception that Linux and Mac OS X are not affected by bugs, or security vulnerabilities, that they are impervious and deliver absolute protection to their users. On more than one occasion, I have seen Linux and Mac OS X users claim that they never had to implement an anti-virus with their operating systems. This is the case of one of my friends, which never installed anything even remote to a security solution on her Mac OS X Tiger. So the fact that Linux and Mac OS X users feel safer than Windows users reflects a reality and not just a marketing doctrine.

But at the same time you have to look at the statistics. On March 13, the Redmond Company released no security updates for any of its products. And while Microsoft was skipping a monthly patch cycle, the first time since 2005, on the very same day, Apple plugged a total of 45 security vulnerabilities in its operating system and in third party programs. The majority of security patches addressed issues reveled in January 2007 via the Month of the Apple Bugs. In January, no less than 31 security vulnerabilities were disclosed for Apple products, at the rate of one per day.

Has this scarred Apple's products in any way? I don't think so. Has it impacted Apple's reputation as a standard and an apex for security? Not even in the least. In fact, I have found that the majority of Mac OS X users remain unaware of this issue or even downplay it. And despite announcing their intention to contribute to the perfecting of Apple products, the two researchers behind the project, Kevin Finisterre of Digital Munition and L.M.H. from Month of Kernel Bugs, have been gratuitously attacked by Apple supporters.

And we are down to the issue of patch development time. Symantec has looked into this issue and concluded that Microsoft Windows has a much shorter average patch development time than Red Hat Linux and Mac OS X. Symantec comprised statistics for 2006. Microsoft spent an average of 21 days on building updates for 39 security vulnerabilities in Windows, 12 of which were considered high severity in the last six months of the past year in comparison with the 13 days it took to deliver patches for 22 flaws in the first half of 2006, only five of which were labeled high severity.

Red Hat Linux is runner up in the context of the shorter development time, taking almost three times as much as Microsoft to patch a sample set of 208 vulnerabilities from July to December 2006, only two of which were considered high severity. In the first six months of 2006, 42 vulnerabilities have been patched in Red Hat Linux, only one was considered high severity, and an average patch development time of 13 days was spent on delivering the fixes.

43 vulnerabilities plagued Mac OS X in the second half of 2006, one of which highly severe, and Apple took no less than an average patch development time of 66 days to resolve the issues. In the first six months of the past year, Apple had an average patch development time of 37 days for 21 vulnerabilities, three of which were considered high severity.

In terms of the most critical vulnerabilities, Windows is clearly a more exposed platform with 17 high severity flaws in 2006. But since we are talking code quality, Windows had a total of 61 vulnerabilities in 2006, Red Hat Linux had 250, and Mac OS X 64.

"The risk of exploitation in the wild is a major driving force in the development of patches. As with previous periods, Microsoft Windows was the operating system that had the most vulnerabilities with associated exploit code and exploit activity in the wild. This may have pressured Microsoft to develop and issue patches more quickly than other vendors. Another pressure that may have influenced Microsoft’s relatively short patch development time is the development of unofficial patches by third parties in response to high-profile vulnerabilities," Symantec explained in the Symantec Internet Security Threat Report - Trends for July–December 06 -Volume XI, Published March 2007.

Jeff Jones, Security Strategy Director in Microsoft’s Trustworthy Computing group has compared the performances of Windows Vista, Windows XP, Red Hat Linux and Mac OS X Tiger in the first 90 days of commercial availability it terms of resolved vulnerabilities.

Mac OS X v10.4 had 10 vulnerabilities disclosed prior to the April 29, 2005 launch, four of which high severity. In the first 90 days Apple patched 20 vulnerabilities in Mac OS X Tiger, eight of which, counting the four already mentioned were considered high severity. After the first 90 days there were still 17 issues expecting to be addressed in Mac OS X.

Red Hat Enterprise Linux 4 Workstation shipped on February 15 2005, with 129 vulnerabilities publicly disclosed, no less than 40 high severity flaws. In the first 90 days of general availability Red Hat addressed a total of 181 vulnerabilities, 58 of which had a level of high severity.

Microsoft resolved three vulnerabilities affecting Internet Explorer before it shipped Windows XP SP2. Including these three, Microsoft plugged a total of 14 holes, out of which eight were high severity.

Windows Vista delivered a superior performance to Windows XP SP2 with only five vulnerability disclosures in the first 90 days since November 30, 2006. "5 total vulnerability disclosures in the first 90 days, with one of them fixed and one High severity one pending, along with 2 Mediums and a Low severity vulnerability. Is that good, bad or indifferent? Let’s look at other operating systems and see if they can provide some context for these numbers," Jones revealed.

Q.E.D.

 
Comments | Link here | Subscribe
Print | Send to friend
Today's News | Yesterday's News

Search:

TAGS: Windows Vista Windows XP Mac OS X Linux

24th March 2007, 10:28 GMT | Copyright (c) 2007 Softpedia | Contact:
Read by 8,077 user(s) | Rating: | 18 vote(s) so far | Cast your vote:
Windows vs. Linux vs. Mac OS X - USER OPINIONS

Comment #1 by Jawshie on 2007-03-26, 22:04 GMT reply to this comment 
It is silly to base the security of an OS based on how many patches it releases. You say that Microsoft releases less patches therefore is more secure? Thats bologna! The beauty of being Microsoft is that you don't have to fix every vulnerability. Antivirus, Antimalware, and other security companies complete this task for them to get a tenderloin of the cash cow.

Let us see you install a fresh copy of Windows XP SP2, run on administrator mode (since most people do) and try not to get infected in some way during your normal routine, whatever it may be. Even turn of your lovely NAT routers perhaps.

You will definatly find that OS X and Linux are far more superior in this aspect. I have to donate probably 100MBs of memory on my Windows machine to keep it safe even though the things I do are considered safe. The other OSs can satisfy the wasted 100MBs with nice graphics or perhaps a web browser :)

Reply #1.1 by Sabotor78 on 2007-03-27, 06:11 GMT
Yeah, 100MB it is a lot (BTW, Kaspersky Antivirus it is using only about 10 MB) and i can't use an antivirus because i'll run out of memory :D. But, if you think a little, imagine if you want to create a virus, do you want to infect many computers or just a few of them? So, for which OS will you design your virus? For OSX (running on about 6 % of the personal computers in the world), for Linux (about 0.42 %) or for Windows (91.51 %) source - http://marketshare.hitslink.com/report.aspx?qprid=2 ? I'm pretty sure that if Linux (or OSX) was in Windows's position, the whole thing would be upside down. And as far as I am concerned, I want that OS that has the fastest response time (regarding security update releases), because there is no such thing as a secure OS.

Comment #2 by Jawshie on 2007-03-28, 14:41 GMT reply to this comment 
If you take a look at the structure of the OSs themselves it will become obvious that making a virus for such a thing would be extremely difficult. Most do not last long as it is. Since OS X and Linux are derived from Unix, they have a strong backbone.

I tell ya, if Windows were to remove all the backwards compatability and just make a completely new OS, not only would people adobt it but it could be very good if they made it the way it should be made. With the backwards compatability is where the real issue comes in. Vista has a good idea, just not the right way to implement it.

Comment #3 by Atli Þór on 2007-04-12, 11:19 GMT reply to this comment 
I have to agree with Sabotor78.

People that create viruses, like all other terrorists, are trying to maximise the ammount of damage they do.
For that reason Windows is by far the biggest target. Because of that Microsoft has had to deal with much much more than Linux or Apple have ever had to endure in regards to security.

As it stands right now, Windows XP or Vista, using any decent Antivirus software and just a small ammount of common sence on the users part will run virus free 99% of the time, which is a major acheivment for Microsoft considering the ammount of attacks aimed at it.

For years now Microsoft has been updating their security, which has forced terrorists to create smarter ways of breaking throught,
so I doublt very much either Apple or Linux could survive the threats Microsoft has to deal with, given how easy they have had it in the past.

go to top


SHARE YOUR OPINION ABOUT Windows vs. Linux vs. Mac OS X

Since you are not logged on, your comments will have to be approved before being displayed.
Click here to login, or register.
Your Name:
Your Email:
Type in the result:
Your Opinion:
 


DO YOU WANT TO CONTACT US?  

If you have some comments or you want to send us some information you can send us an email directly to .
You can use the form below for the same purpose.
Your full name: (at least 3 characters)
Your email address: (at least 5 characters)
Message subject: (at least 5 characters)
Message text:
(at least 10 characters)
Type in the result:
 
 
© 2001 - 2008 Softpedia. All rights reserved.
Softpedia™ and Softpedia™ logo are registered trademarks of SoftNews NET SRL.
Copyright Information | Privacy Policy | Terms of Use | Contact Softpedia | Update your software | Archive