SearchOpenSource: Fortifying Linux Against Common Malware
Feb 06, 2006, 07:00 (15 Talkback[s])
(Other stories by Justin Korelc, Ed Tittel)
[ Thanks to Jane Walker for this link.
"Securing enterprise Linux desktops against hostile code has
gotten easier, thanks to Ingo Molnar's work on the NX enabler patch
in Linux kernel 2.6.8 and processor-based, page protection
mechanisms. The trick is in the execution, and, as usual, the
Microsoft way probably is not the right choice.
"Common IT wisdom calls for measuring computational performance
by execution cycles and runtime efficiency, so it seems
counterintuitive to gauge a processor by what it does not execute.
This approach, however, brings a much-needed preventive capability
to the desktop arena, one that has been used successfully on
servers to fight malware..."