mmm if you check firefox it is proven to be more secure on linux than on windows, i mean sure firefox can have crossplataform bugs[the source is not the same for every plataform just almost the same massive difference here] cuz like i said windows security concept is a bad joke, so lets say advapi32 has 1 critical security bug[normally is mined with those] and firefox has to use that API[same as any other windows app] cuz on windows it uses MSVC then firefox can't do squat about it[they can try to reduce or add extra check to try to stop a possible attack] but advapi32 doesn't exist on linux and the linux couterpart don't have that security flaw hence is not exploitable on linux or mac in this case and that same thing is true on any crossplataform application, another example could be Mono[i don't like it but for the sake of the example] is lots of time more secure on linux than using .NET directly on windows since the applications developed with it are 100% on the underlying .NET runtime which are mined with security issues too that no .NET app can protect.
Originally Posted by Kano
this is most of the security issues present on crossplataform apps, so im not saying apps on linux are 100% secure cuz like i said you can have a crossplataform bug but the app security is as strong as the underlying weak slave of the OS chain and in this case linux/bsd/solaris/etc have a pretty stable chain[not perfect but lot closer than winblows].
now i agree if you have physical access to the PC you just put a firewire or easier just a livecd[work with any OS] and booom.
funny note almost any security issue can grant total control over the NT OS kernel, insane right?[that is what you call a well thought security layout]