[153820] in North American Network Operators' Group
Re: EBAY and AMAZON
daemon@ATHENA.MIT.EDU (valdis.kletnieks@vt.edu)
Wed Jun 13 14:43:18 2012
To: JC Dill <jcdill.lists@gmail.com>
In-Reply-To: Your message of "Wed, 13 Jun 2012 11:08:25 -0700."
<4FD8D719.1070704@gmail.com>
From: valdis.kletnieks@vt.edu
Date: Wed, 13 Jun 2012 14:42:20 -0400
Cc: nanog@nanog.org
Errors-To: nanog-bounces+nanog.discuss=bloom-picayune.mit.edu@nanog.org
--==_Exmh_1339612940_2111P
Content-Type: text/plain; charset=us-ascii
On Wed, 13 Jun 2012 11:08:25 -0700, JC Dill said:
> If both flavors were equally easy to exploit, according to your theory
> above we would see more exploits on the *nix servers. Yet server-side
> exploits are seen on Windows servers far more often than *nix servers,
> despite the fact that more web pages are served by *nix servers than
> Windows servers.
I suspect the *real* issue is that for really large systems, it's not so much
"exploits" as "one-off customized attacks". The chances of pwning Bank
of America with an off-the-shelf attack are pretty low - but finding a blind
SQL injection and leveraging it are a bit higher.
And given all the 'XYZ got pwned' news stories, I suspect that in fact
the *nix boxes *are* being attacked - just not with COTS attack tools.
--==_Exmh_1339612940_2111P
Content-Type: application/pgp-signature
-----BEGIN PGP SIGNATURE-----
Version: GnuPG v1.4.12 (GNU/Linux)
Comment: Exmh version 2.5 07/13/2001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=df0p
-----END PGP SIGNATURE-----
--==_Exmh_1339612940_2111P--
