I saw this, not sure how long it's been posted on the web. I'm sending an email to see if he has recieved any replies. The whole site is pretty good about securing linux.

Linux vs Windows Challenge (http://www.hackinglinuxexposed.com/about/challenge.html)

Interview with the author:
Interview (http://www.linuxquestions.org/questions/showthread.php?threadid=109891)

He sounds like a nice guy. Nice interview. :)

Got a reply:
"Nope - not a single nibble. I occasionally think of
doing something like posting it to slashdot, but I'm
extreemly lazy and not good at marketing...



--
Brian Hatch Systems and Security Engineer
www.hackinglinuxexposed.com" How can I miss you if you won't go away?"

Hmm... sounds interesting.

Maybe I'll try it.

I hope that someone takes up the challenge.....

I have one or two friends that are seriuosly good at Windows, unfortunately we dont live in the states, so well just have to watch it via the net...:rolleyes:

I think to take up the challenge, you'd need to be an absolute ace with windows.. Like more so than the guy with linux would have to be. There's simply more documentation and code available for linux..

Last time when such a contest took part (organised by a certain magazine), nobody managed to crack the Windows 2003 server. One weeek later turned out that the Windows 2003 box was behind 4 OpenBSD firewalls. I don't remember the link , but I have the magazine at home.Also turned out that 50% of the sponsorship of that certain magazine was offered by Microsoft. Nice try. I'm not saying that Win 2003 server is bad or that a Linux server is un crackable , but talking about fair-play ...

I take it Linux won the competition then? :D

James

No further comments were posted regarding the issue. I think everyone understood at that time that they were fooled somehow.I'm not a hacker,so dunno how this stuff works.

the only thing is that most people on windows dont get attacked on the server they run. Instead its the simple coolsong.mp3.exe that when run copies itself to c:\path\program.exe and sets HKEY_LOCAL_MACHINE>Software>Microsoft>
Windows>CurrentVersion>Run to include itself, opens up a telnet connection, and then edits the registry to share itself over peer-to-peer networks. I think the all important area of end desktop user security needs more attention.