Comments on: DoD Has No Desire to Mitigate Windows Dependency

By: Zero11534

Zero11534 — Wed, 26 Oct 2011 05:19:00 +0000

Yes windows is a weakness however, you can’t push out patches using different operating systems there for you will need a diff WSUS type servers creating more of a risk then before. Plus the admins are not familiar enough with Mac X to use it. There are a lot of Linux systems on the networks however they are built per site. As the DoD is not into giving up it’s info on what systems they are running you would never know what is on the full GiG. I for one do not like OSX yes there are less virus for it however less people use it, so when it becomes used as much it will have the same issue that windows does. I could list many more reasons NOT to move to to Mac and Linux is well incorporated already. AKA RED HAT, and Solaris. Just saying… I think this post is a good opinion however it’s just not practical with in the next 4-10 years. When IPV6 is fully used in the DoD maybe OSX will be too hahaha!

By: Remove Spyware

Remove Spyware — Mon, 02 Aug 2010 11:43:16 +0000

Yeah, Windows is more vulnerable to virus.

By: Jim

Jim — Fri, 05 Jun 2009 01:12:07 +0000

I've always wondered why, with all the crap the DoD makes, we have yet to see a hardened-Linux based NavOS, ArmyOS, DoDOS, etc. It makes sense that if we use Linux as a framework, and only install/configure the bare essentials, we'd be less likely to be compromised.

By: TechMiso :: A Laptop Price Comparison for the Mac Haters

TechMiso :: A Laptop Price Comparison for the Mac Haters — Sun, 01 Feb 2009 02:57:43 +0000

[...] architecture. People are completely averse to change, so trying to get leadership to inject some defense-in-depth on the desktop operating system side of the house is a hugely tough sell these [...]

By: Joshua Jones

Joshua Jones — Sat, 10 Jan 2009 11:26:07 +0000

Excellent post! I think the majority of companies have the mindset you stated Scott. It appears too costly to buy new systems and get everyone trained on them. I had the difficult challenge of explaining that very fact recently. Easy to just use Windows and pay the IT guy to give administrator access to anyone who asks.

Nuts, right? Tested that when I heard, asked for admin access myself. (I'm just a contracted web designer for them) He gave it to me.

Keep up the posts, hopefully you guys get more readers!

By: Scott Jarkoff

Scott Jarkoff — Sat, 10 Jan 2009 10:47:10 +0000

Agreed – that is always going to be the hardest part. It is merely a matter of trying to sell a migration, or better yet a pilot, as a win-win situation for everyone involved. Definitely easier said than done, but completely doable under the right circumstances.

By: Scott Jarkoff

Scott Jarkoff — Sat, 10 Jan 2009 10:46:08 +0000

While they do not have a Linux workstation image (DISA is not in the business of building images), they do have published STIG's explaining the procedures for properly securing a number of operating systems. Unfortunately, their Linux STIG is geared towards Linux as a server and does not address X at all.

By: Scott Jarkoff

Scott Jarkoff — Sat, 10 Jan 2009 09:58:19 +0000

Thanks for stopping by Joshua!

Interesting that you mention administrator access – the fact that someone offered it to you so easily is crazy yet not surprising. All too often this happens in organizations who do not take security seriously.

Handing out admin access like candy is one of the more dangerous practices which needs to be curbed otherwise organizations will get compromised via one of the various social engineering techniques, and will ultimately end up handing out admin access to an attacker!

Scary stuff methinks!

By: Rich Chuckrey

Rich Chuckrey — Sat, 10 Jan 2009 05:34:04 +0000

I'm sure DISA have a Linux-like workstation image approved for the network, no? If they do, could you ramp up a few as a pilot?

By: Jim MIlls

Jim MIlls — Sat, 10 Jan 2009 05:10:02 +0000

Totally agree. The are a number of viable solutions to the MS software catalog that can be run on OSX or Linux. The hardest part is getting the government powers to be in a proactive mindset rather than "well this is how we have always done it" mindset.