Linux or Windows? Seems like nothing starts a war in the IT department like this topic… but which is better? Which is more secure? These two operating systems are very different, and regardless of your preference, you will need to handle both in any sizable IT infrastructure. For this discussion, chose a service, and tell us which OS you would prefer, why you think it might be better both in technology and security. Be sure to provide some evidence for your choice, and highlight the differences between these two operating systems and their utilities. Also, if you disagree with someone else’s assessment, rather posting your own service/OS, propose an alternative along with evidence as to why you would make that choice.
And – depending on how serious you are about Windows / Linux… keep the conversation civil 🙂
Scott Radaszkiewicz says
This is not a comment on the discuss, but some help with assignment PA 2.1
There are two command syntax errors you want to be aware of. In 5h and 5j, the context name needs to be in quotes.
Original: # ldapadd -x -D cn=Manager, dc=localhost,dc=localdomain -W -f /home/userid/basedomain.ldif
Correct Syntax: # ldapadd -x -D “cn=Manager, dc=localhost,dc=localdomain” -W -f /home/userid/basedomain.ldif
Make the same correction for 5j.
Darin Bartholomew says
Thank you for your help, Scott
Ruslan Yakush says
Hello Classmates,
Also, I wanted to add a few tips regarding the lab PA2.1.
When importing basedomain.ldif, user1.ldif and user2.ldif, you may get the errors as follows:
“Protocol Error (2)”
“No such Object (32)“
Root Cause:
Linux is very sensitive at interpreting the code. So, the ldif file containing the code must be clean in terms of having no extra spaces and no extra characters. Otherwise, Linux shell will not read the code and therefore generate errors.
Resolution:
When copying code text from the instructions into created file with ldif extension, and before uploading file to Linux FTP server from within Windows, make sure to clean up the file, line by line, as follows:
– remove any leading and trailing empty spaces
– remove unnecessary/extra characters that could be inserted by MS Word or NotePad during copy and paste operation
– organize each code line item exactly the same way as written in the Brian’s instructions, because text code could be distorted by Word or NotePad during copy and paste operation.
This is very time consuming process to perform this type of clean up, but this is how I fixed the aforementioned errors. Once files were clean, I was able to import them into LDAP from Linux shell with successful results.
Loi Van Tran says
Here are some questions that I had and responded to from another student:
With step 2 and 3. I’m getting errors. Questions:
-When we edit vsftpd do we follow the blog post instructions to the t, or we just need to comment local enable=yes.
The only thing you need to do is make sure that there is no “#” in front of local_enable=yes
To save it you need to enter Shift+Z+Z
-When I comment local enable=yes actually how do I exit the screen to move on.
To save it you need to enter Shift+Z+Z
If you exit incorrectly, then the system will create a swap file. In that case you need to remove the swap file
It should look something like this : # rm /etc/vsftpd/.vsftpd.conf.swp
Once you delete that, go back in : vi /etc/vsftpd/vsftpd.conf and make sure that the # is removed
Then save it (Shift+Z+Z)
-When I try to FTP via explorer I get error (Opened in Internet Explorer)
You are suppose to use FTP from you host machine, the machine that is running the VMware.
Open a folder and in the browser bar type in: ftp://student:student@serveripaddress
You should see folders like you would normally do when opening a My Documents folder.
– When I do FTP via terminal and I cannot create file that way to through using “mkdir’ command.
You can see when I list I do not have new file.
Try logging in as root. But the exercise asked for you to mkdir through the VM terminal and not through FTP.
Try using the command SU to elevate your privilege in the VM Terminal
Then # mkdir /home/student/public_html
Amanda M Rossetti says
Thank you for the help Scott! I’m having some issues in testing my LDAP session. I downloaded LDAP Admin tool but can’t figure our what to put into the connection properties screen. I’ve tried a few different things but keep getting an error saying the server is down. Anyone else have this issue and know how to fix it? Thanks in advance!
Darin Bartholomew says
I would prefer windows because at the end of the day, you know Microsoft is the responsible party for patching and fixing issues. Depending on your distribution of Linux, that’s a little fuzzier. Since Microsoft and Windows have a larger market share and more money, tons of resources can be spent securing their operating systems compared with Linux competitors. Now venturing outside my knowledge set, I would argue that any custom solution you wanted to enable to lock down a linux machine would also be available with Windows if you have the proper skillset. From a business standpoint if there is a purely windows vulnerability that impacts your company, chances are there are a lot of other businesses in the same situation so the PR nightmare isn’t as bad. Just a few thoughts.
Amanda M Rossetti says
You summed up my thoughts on the matter quite well. I think the security you gain from Linux being more obscure and there be many modules you also lose because a lot of it is open sourced. If the code you are running is open sourced that means that anyone could have access to it and be able to find bugs and ways to get around the security you put in to protect your digital assets.
Noah J Berson says
I think Windows at the end of the day is the right choice for computers used by employees inside a company. i do think there is an issue with assuming that Microsoft is always the responsible organization for your security though. There are even times when Microsoft broke a lot of computers via updates. A company I worked at had issues during the Windows 10 heavily pushed update fiasco. Also, any other software such as browsers, plugins, or downloaded programs are outside of Microsoft’s patching abilities. When these vulnerabilities are targeted, it is Windows machines the malware is expecting to see and work with. I do like the idea that the bad PR wouldn’t affect just the company but that still worries me if I had to explain why something went wrong to a board. I think the cost of switching over employees to Linux is too expensive in the end which is why hardening Windows to try to be as strong as Linux can be is a good solution.
Andres Galarza says
Linux or Windows? Seems like nothing starts a war in the IT department like this topic… but which is better?
I’m a lifelong Windows user and have never used Linux. However, I’d hesitate to say one is comprehensively better than the other. Windows obviously enjoys a huge market share advantage over Linux in desktops, but Linux has more or comparable market share in the world of servers. I’d argue that Windows is better for typical desktop enterprise use because of the pervasiveness of applications like the Office suit and Outlook. However, Linux isn’t a bad choice because of the quality of the operating system, rather because it’s adoption is more limited in the space that Windows excels.
Which is more secure?
Again, I think the answer is a matter of degrees. Windows presents a bigger target for attackers due to its widespread use, so your risk increases if you use a Windows desktop. However, that’s not to say that Linux has no vulnerabilities, or that it’s risk free.
Ioannis S. Haviaras says
This is definitely a topic in which many IT people can start heated arguments over! I am not very familiar with Linux and have used mainly Windows as my operating system. Saying that, I would have to side with Windows being the safer of the two. If you think of a larger organization as a whole implementing Linux over Windows would be a nightmare. Since Linux is open-source it can be both good and bad since the code is open to hackers but it is also available to see the vulnerabilities and patch them easily. Microsoft on the other hand, owns the code for Windows so only one organization is able to look at vulnerabilities as supposed to having many different organizations with Linux. On the other hand Microsoft is able to patch Windows very easily and quickly. If vulnerabilities were to be found by someone with Linux it won’t necessarily be patched right away since it is a free OS.
Ruslan Yakush says
I have been exposed to Windows and Linux environments and constantly using Mac and Windows to accomplish my everyday tasks at work and home. I am not choosing anything specific as I enjoy working with multiple OSs and different technologies to meet various business challenges. However, it seems like Linux is favorable OS by many large corporations versus having Windows as core infrastructure systems. The notable reasoning I have found if business core function is money (such as banks, e-commerce), then Linux is preferred due to its robust and advanced functions that can provide fully customized secured environment in controlled fashion, whereas Windows platform would be a choice of preference for small-mid size businesses who are not dealing with money but rather provide healthcare, educational and professional services.
Linux is open-source OS that provides unlimited opportunity for passionate and dedicated developers in the internet community to contribute their inspirational ideas into real world and release customizable products. Linux provides a lot of powerful built-in capabilities and tools for development, penetration and vulnerability assessments, advanced exploitation (such as Metasploitable), Web, FTP and SQL servers, shell with kernel programmability, and much more. Tools are built with security in mind. However, new security patches and releases may not be releases quick enough.
Windows is not open-source and comes pre-packaged with no customization possible. All built-in securities are not customizable. Kernel is hidden from modification. Windows does not have as many built-in free powerful tools as Linux does. Many software packages are built by various vendors without security in mind, thus weakening security of entire system. However, Windows releases security patches on monthly basis.
Both Linux and Windows provide various capabilities enabling functions for unique business types. However, neither Linux nor Windows nor Mac are secured. Linux allows to see what is underneath its kernel allowing to view what is actually running and how it can be manipulated in malicious or legitimate ways, whereas Windows is a black box where it is not possible to manipulate with. There is always a way to breach security. Every OS type has its own security mechanisms and weaknesses.
Since Windows is largely used worldwide and most of its software is configured and built the standard way with the same versions without much of customization, it is more prone to attacks. Windows OS and related Apps get targeted more than Linux. If a Windows component is compromised there is more gain for hacker given its worldwide presence. If Linux portion is compromised, there is higher likelihood that the same function used by other organization might be customized to reduce attack surface, so hacker may not gain much from it.
Loi Van Tran says
Ruslan, this is a very tough act to follow and you’ve provided a great number details for both OS. I have always been a Windows user and have only venture into Linux in the recent year. I still find Linux a little confusing, but am hoping to become better at it. At this juncture, I would prefer the GUI of the Windows OS, mainly due to my familiarity with the system. For somebody that doesn’t use Linux on a regular basis there is a huge learning curve that must be overcome.
In regards to which one being more secured, I can only answer based on reading and in class discussions. Since Windows OS and products are mass produced without customization, a vulnerability found in the OS puts all systems with Windows OS at risk of an attack. With Linux, which is highly customizable, the potential of vulnerability exploitation is limited to the specific Linux OS instance, making the potential gain of a single exploit less favorable for a hacker.
The Windows OS is more of a one-size fit all, whereas default configurations of the OS applications and software, out-of-the-box, may not be necessary or enough for the organization. The organization can “hardened” the OS base on their needs by removing default services or programs and changing default settings such as firewalls. The Linux, on the other hand, provides a platform where the organization can add on the services and tools that they need, as they need it.
JR says
I’ve been on the linux bandwagon for the majority of my life. My first computer was an old Dell desktop donated from a library with 128 MB of RAM and barely 10 GB of storage. At the time, an average computer had about 2048 MB of RAM and a 100 – 500 GB of storage. Using Linux helped me make the most of limited resources I had to do just about everything short of virtualization and games that users with the 2 GB “supercomputers” of the time were able to do.
However, I got off my bandwagon after my first $900 laptop had a video card which was incompatible with Ubuntu. I started to see the benefits of both operating systems based on what I needed to do. when I started working in IT.
While linux is faster, lightweight and more satisfying to use, it takes up quite a bit of time which can be saved if I can use a more powerful PC that I runs Windows. Working at small to midsize IT shop let me see the nightmare of managing user expectations which are hard enough to satisfy with the consistent experiences of Microsoft Windows, group policies, AD and all of the support tools that are available with Microsoft Windows. I can’t even imagine how hard it would be to manage PCs with different hardware in a linux environment with users who are used to seeing windows operating systems.
Long story short, my OS preference depends on what I need done.
Mengxue Ni says
I am always a Windows user. I used to have a mac but I still installed Windows XP on it. Windows is more user friendly. One of its primary design characteristics is the simplicity of basic system tasks. Linux frequently require a deeper understanding of the underlying system to perform day-to-day functions, and troubleshooting technical issues can be a more intimidating and complicated process than on Windows.
But for security, I know that Linux is better than Windows. You don’t have to install firewall or anti-virus software on Linux but for Windows, I always use anti-virus software to protect my information. It is easier to get malware on Windows since it has largest user base, it becomes the primary target for malicious hackers. It is most likely to be the victim of viruses and malware.
Shain R. Amzovski says
As a System Administrator at Temple, we have applications running on both Windows and Linux Servers. Although at home, I am a Mac OSX user, at work I prefer to work in a Windows environment. It is easier to communicate with one another using Microsoft office apps, etc. For example, using Word, Excel, and Powerpoint, and Skype for Business to communicate on an enterprise level. Although Windows isn’t as secure as Linux, running a windows server, we can essentially disable all of the ports except what is necessary to run a specific application. Windows Server interface is almost identical to using Windows 7 or 8 depending on which version of Windows Server you are running. Windows is more prone to attacks because of how widely it is used around the world.
Mushima K. Ngalande says
Windows seems the way to go because of the GUI it provides unlike Linux. That can be very intimidating even for system administrators where you don’t visually see what you are doing.
Though I’m a windows user Unix offers better security and even a sense of security. The fact that you are writing out code you feel more in command that just clinking on stuff.
A key advantage with Linux is that account have least privilege access unlike Windows where users are pretty much given admin rights. Linux those rights have to be elevated.
Linux are not know for virus attacks unlike Widows who have to keep churning out patches to fix vulnerabilities.
Another advantage with Linus it’s open source so has a number of people watching over the security of the system so can see vulnerabilities quicker than Windows who have a few compensated security experts watching over the system.
Jon Whitehurst says
Ninety-nine percent of my exposure to an OS has been windows. I have always used Windows in my working and home environment and used Linux to trouble or to get a different perspective or use as a testing system. In the last few years, I have started using Linux more and more and it first started when I got into the security. It was not from a security perspective but it was from an audit perspective, where all logs were centralized and was unable to remove the files from the system. Which is more secure it depends on how well you are using a patch management system and you are using some kind of anti-virus software for a windows system. If I were to choose between the two operating systems I would use Linux if I could use the basic software (word, excel, PPT, etc) and be able to communicate with the rest of the business world.
Mengqi He says
I used Windows for several years and then switched to iOS, and I even never used Linux before this class. Even after using all these three OSs, I can hardly say which one is the best. We only discuss Windows and Linux this time, and let’s compare these one OSs on distros, compatibility, support, user friendliness, costs and security. Firstly, it is easy to choose distros for Windows due to limited numbers of distos. You can just pick one from Windows 7, 8 or 10. However, choosing a Linux system is much more complicated. Linux has many different distros because it is an open source OS. Distros of Linux may vary wildly in design, functionality and sophistication. Popular distros include Ubuntu and Fedora. Secondly, the majority of applications are written predominantly for Winddows, while many of them are not compatible on Linux. Even though the open source community has created alternatives to fulfill user’s different demands, organizations still should be careful to decide to use or convert to Linux. Thirdly, Windows has official assistance for products supports to help users solve problems, while Linux’s forums and tutorials are basically created by the community of passionate fans, and thus are fragmented. You cannot always find a satisfied answer to problems you met due the large numbers of distros. Fourthly, it is obvious that Widows is more user-friendly and easy to get started as the most widely-used OS. Unlikely, Linux is much more complicated for new users, but the more you understand it, the simpler it is to use. Fifthly, for enterprises using Windows, they have to pay monthly or yearly for volume licenses, while Linux is totally free to every one. Lastly, let’s have a look at the most important issue we focus on, security. Security seems to be one of the most important reason that people choose it and love it. The security is mainly due to the account privilegs. In Windows, users are giver administrator access to almost everything by default. It means once attackers get in, they can penetrate the system quickly and gain access to everything in the system. However, in Linux, users usually don’t have the root privilege. Instead, most accounts only have lower level privilege with limited access to the files in the system. It means even if attackers get in, the damage they can make is limited because they have no access to important files. In addition, the competent community of Linux is another important reason why it is secure. Linux users are more technically savvy and are unlikely to access or download suspicious files form the internet. Therefore, Linux is less vulnerable to social engineering than Windows. Moreover, Linux has a variety of distros and a diversity of computing environments. The highly fragmented systems make virus hard to attack, while Windows has limited distros and consistent structures that make it easy for virus to spread out. More than that, it is also much easier for virus to spread out on Windows due to its large user population, and most of users are not technical persons and are vulnerable to virus.
After comparing the two systems in many aspects, I still cannot say which one is better. But my suggestion for enterprises are that for small companies, Linux would be a good choice because it is free and more secure, while for large companies, I would suggest Windows because it is compatible to most applications and more user-friendly with more official support. It is also hard and time-consuming for large companies’ employees to learn Linux from the beginning.
References: http://www.itpro.co.uk/operating-systems/24841/windows-vs-linux-whats-the-best-operating-system
https://mintguide.org/other/476-why-linux-is-more-secure-than-other-operating-systems.html
Anthony Clayton Fecondo says
Personally, I have a tendency to use Windows. There’s a wider variety of programs available on the Windows platform (especially videogames) and the GUI is more user friendly than the terminal. However, Windows has distinct cons that strengthen the case of using Linux. For one, Windows is very resource intensive. Another problem is the price tag. Windows isn’t cheap and at $100 per machine, the free alternative, Linux, is looking pretty good. If I was looking to make a budget machine for performing tasks (and not gaming), I would chose to use Linux as my OS. On the other hand, if I was making an overkill gaming PC, I would run Windows.
Determining which one is better is a very subjective/opinionated topic so I just gave my criteria and reasoning for a given situation. Other people might prioritize different factors that drive their decisions.
BIlaal Williams says
My very first experience with Linux was in my first programming class using my temple Unix Astro account. At first it seemed very confusing and I was totally unaware of the power and customizability it had. As I continued to explore the OS I began to appreciate it’s possibilities. When I became interested in pentesting and downloaded the kali linux suite I was sold and Linux became my favorite OS.
The majority of my life I’ve been using Windows and it’s ease of use makes it the choice for most enterprise situations that involve end users who are not technically savvy. That being said most versions now come with a user friendly GUI such as X Windows and Gnome which is now making Linux a more user friendly OS.
The fact that Linux is free and open source is a big plus to me. The source code is available to the public, so the playing field is even for all types of users. There are plenty of Linux communities available to offer help ranging from configuration to security issues.
There is no dout that Windows is a powerful user friendly operating system. But it is costly, and proprietary so when compared with the free, open source aspects of Linux, I choose Linux as my go to operating system.
Mengqi He says
I used Windows for several years and then switched to iOS, and I even never used Linux before this class. Even after using all these three OSs, I can hardly say which one is the best. We only discuss Windows and Linux this time, and let’s compare these one OSs on distros, compatibility, support, user friendliness, costs and security. Firstly, it is easy to choose distros for Windows due to limited numbers of distos. You can just pick one from Windows 7, 8 or 10. However, choosing a Linux system is much more complicated. Linux has many different distros because it is an open source OS. Distros of Linux may vary wildly in design, functionality and sophistication. Popular distros include Ubuntu and Fedora. Secondly, the majority of applications are written predominantly for Winddows, while many of them are not compatible on Linux. Even though the open source community has created alternatives to fulfill user’s different demands, organizations still should be careful to decide to use or convert to Linux. Thirdly, Windows has official assistance for products supports to help users solve problems, while Linux’s forums and tutorials are basically created by the community of passionate fans, and thus are fragmented. You cannot always find a satisfied answer to problems you met due the large numbers of distros. Fourthly, it is obvious that Widows is more user-friendly and easy to get started as the most widely-used OS. Unlikely, Linux is much more complicated for new users, but the more you understand it, the simpler it is to use. Fifthly, for enterprises using Windows, they have to pay monthly or yearly for volume licenses, while Linux is totally free to every one. Lastly, let’s have a look at the most important issue we focus on, security. Security seems to be one of the most important reason that people choose it and love it. The security is mainly due to the account privilegs. In Windows, users are giver administrator access to almost everything by default. It means once attackers get in, they can penetrate the system quickly and gain access to everything in the system. However, in Linux, users usually don’t have the root privilege. Instead, most accounts only have lower level privilege with limited access to the files in the system. It means even if attackers get in, the damage they can make is limited because they have no access to important files. In addition, the competent community of Linux is another important reason why it is secure. Linux users are more technically savvy and are unlikely to access or download suspicious files form the internet. Therefore, Linux is less vulnerable to social engineering than Windows. Moreover, Linux has a variety of distros and a diversity of computing environments. The highly fragmented systems make virus hard to attack, while Windows has limited distros and consistent structures that make it easy for virus to spread out. More than that, it is also much easier for virus to spread out on Windows due to its large user population, and most of users are not technical persons and are vulnerable to virus.
After comparing the two systems in many aspects, I still cannot say which one is better. But my suggestion for enterprises are that for small companies, Linux would be a good choice because it is free and more secure, while for large companies, I would suggest Windows because it is compatible to most applications and more user-friendly with more official support. It is also hard and time-consuming for large companies’ employees to learn Linux from the beginning.
References: http://www.pcworld.com/article/202452/why_linux_is_more_secure_than_windows.html
https://mintguide.org/other/476-why-linux-is-more-secure-than-other-operating-systems.html
http://www.itpro.co.uk/operating-systems/24841/windows-vs-linux-whats-the-best-operating-system
Vaibhav Shukla says
I think when compared with the market share the windows is the clear winner because of its user-friendliness and accessibility to first-time users .The reason for its market shares also drive more software and apps to be compatible with windows in comparison to linux. In the organization which I have worked before I had seen that most of the computers were windows for daily employee operations but most of the servers used were installed in linux OS.So this clearly clarifies that it depends on IT business to use either linux or windows OS for their organization as per the requirement.
When we talk about security then the linux is a better option comparison to windows .The advantage of windows that most of the software written are for the use in windows turns out to be the disadvantage too as most of the malware created are also made for windows.There is another good option linux offer in terms of security that it is open source so more available for vulnerability scanning and digging out of the flaws.