This is a read-only archive. Find the latest Linux articles, documentation, and answers at the new Linux.com!

Linux.com

Good point - but you have to be careful

Posted by: Anonymous Coward on June 07, 2002 04:08 PM
For example, if you were to use the obscure system a/ux (the original apple unix) some of the attack scripts will work quite well on it. To use this system, you need to have a good idea of the software, the configuration and the problem areas. Gnu stuff can be used to replace broken parts, but... you are introducing new stuff, and there is plenty of bug squashing to do just to get the gnu stuff to work. Source code is not available for this system so that you can apply fixes yourself.

If money is not an object, you can go for something like an as/400. Even if you hack the web server, once you get below it, the windows/unix based script kiddie will run into a stone wall. Even the rpg for dummies books are obscure. Oh, for someone who knows the as/400, setting security to 'obscenely paranoid' is not too hard. Unix does not even come close.

In the end though, it comes down to the admin. You have to have two of them who know the obscure/obsolete system well enough to make it secure and operate it properly. In time one of them will leave and you may find it less expensive to upgrade to something more popular and constantly maintain it, than to find some geek who thinks Xenix is the best thing since sliced bread...

btw - last month I threw out my old mac2si running a/ux because the thing wouln't boot any more. Nice machine, but maintaining it was not worth the effort compared to running my dual pentium mmx 166 with 512mb ram, rh7.3... great samba server... (a bit of a problem finding spare parts for old macs in Latvia, and shipping the stuff from the states is DEFINITELY not worth the effort and cost)

#

Return to Security through obsolescence