Re: Services
What makes GNU/Linux more "secure by design" than modern Windows (i.e. 7 or 8).
There are a few things that you (I guess, pretend) to have never heard about. I might recommend you to go back to some classical text on this. Most of the tackled material remains true to this day, IMHO. Okay, let me provide you my own proof of the "Pythagoras Theorem", ... I mean, my own take, a list of my own. I promise you to not use this Euclid's own masterpiece
a list:
-- most software on GNU/Linux is free/open source, including the kernel and utilities;
-- the kernel is modular, where a huge number of options are togglable at the compile time;
-- various system pieces are mutually interchangeable; many different combinations exist out there, say, quite a few GNU/Linux, BSD, the hybrids of the latter, Android etc;
-- a GNU/Linux (*BSD) system can be stripped down much further, disassembled and assembled with much more ease, than can be Windows. MS Windows didn't invent a headless, bare minimum server; A Core Server -- things are improving in Redmond here after 20 some years of denial.
-- more accurate POSIX hierarchical filesystem structure vs. chaotic Windows that still mixes data and software;
-- much more numerous up-to-date versions in use, a much higher distro heterogeneity than with MS Windows;
-- lack of central secure repositories containing 99% of all used software in MS Windows; recent attempts with a Windows store are unraisable, yet semi, or rather one hundreds of a measure, since very few software is available there. Neither did MS invent the Android's apps' permissions system and its transparency to the user.
-- lack of a decent central packager paired with a repository utility (see the previous item), like dpkg+apt, familiar to you from Debian, that does security, integrity and dependency tests; installs updates most of the software in a near seamless fashion, literally by typing in a command, or by a few mouse-clicks
-- better and closer adherence to the main IT principles of modularity, KISS, software in the Linux/BSD camp of developers and sysadmins than in the proprietary camp including Microsoft folks; neither is F/OSS people changing their opinion on things IT like Microsoft has for the last decades demonstrated time and again.
-- lack of a competent IT culture and infrastructure around MS Windows: harder to troubleshoot and fix problems, than with GNU/Linux or *BSD. Most popular type of diagnosis and resolution with Windows are either:
It's a malware/viruses -- get yourself a good AV and disinfect your PC!
Could be anything.... -- reinstall your system!
--etc
Theses are some I got off the top of m head right now, there are a lot more, I am sure.