Kernel Comparison: Linux (2.6.28) versus Windows (Vista SP1)
Security
Security Model
| Security (model) |
Linux |
Windows |
| security model - Standard Unix Model |
Y |
N
Y (UAC)
|
| i.e. immunity from viruses (given common usage15) |
Y |
N |
| security model - ACL |
N
Y (SELinux21)
|
Y |
| security model - AFS ACL |
Y |
N
Y (add-on)
|
| security model - POSIX ACL |
Y |
Y |
| security model - Security Modules (#401, #402) |
Y - LSM |
Y - CAS |
| user definition - privileges, member groups |
Y |
Y |
| security is implemented - any object manager object (files, processes...) |
N |
Y |
| security is implemented - free from object-by-object assignment |
N |
Y |
Memory Security
| Security (memory) |
Linux |
Windows |
| NX |
Y |
Y |
| ASLR |
Y |
Y |
| PaX |
N
Y (older kernels)
|
N
Y (pre-Vista)
|
Cryptography
Advanced Security
| Security (advanced) |
Linux |
Windows |
| auditing support |
N
Y (option)
|
Y |
| tampering protection |
N
Y (SELinux37)
|
Y38 |
| digitally signed remote execution |
N |
Y49 |
Firewall
| Firewall |
Linux |
Windows |
| kernel firewall - stateless |
Y |
N (external) |
| kernel firewall - stateful |
Y |
N (external) |
Vulnerabilities
| Vulnerabilities (secunia.com) |
Linux |
Windows |
| Current list |
Linux kernel 2.6.x |
Microsoft Windows Vista |
| Most critical unpatched - remote (as of 15.5.2007) |
None |
None |
| Most critical unpatched - all (as of 15.5.2007) |
Not critical |
Not critical |
<-Prev|Next->
Johnathon Weare © Johnny Weare 2009
Comments (0)
You don't have permission to comment on this page.