Ask HN: Could vast amounts of attck vectors be mitigated by moving off MS?

sickofparadox2y ago· 1 in thread

Depending on what your threat profile is, if you are being targeted by nation-state actors, you do not have the best chance of coming out the other side unscathed. I don't think that switching from MS to various open source infrastructure is going to help you, especially when you consider the fairly reasonable reality that most advanced state actors probably have multiple zero days in various software projects stored in case they need to use them.

morphicproOP2y ago

Ok ok, lets throw java in there with MS then too. :P

Bad jokes aside. From the looks of it most of these vectors are SOHO routers thus not really big corp targets as much as average people too.

hnthrowaway03282y ago· 1 in thread

I have a hunch that if you choose super legacy systems such as Novell the malware might not even recognize it.

antongribok2y ago

This reminds me of a joke:

"The reason we haven't been hacked is because we still run 16‐bit POS systems, and today's hackers don't know how to fix anything is such a small address space."

mikewarot2y ago· 1 in thread

Your best long term strategy is to switch to environments that don't use ambient authority as a foundation.

morphicproOP2y ago

This is the first time I've heard of this term. https://en.wikipedia.org/wiki/Ambient_authority

This was interesting to read. Thanks

Funny I was just reading about Macaroons

Ask HN: Could vast amounts of attck vectors be mitigated by moving off MS?

Ask HN: Could vast amounts of attck vectors be mitigated by moving off MS?

6 comments

6 comments