Linux

60439 readers

436 users here now

From Wikipedia, the free encyclopedia

Linux is a family of open source Unix-like operating systems based on the Linux kernel, an operating system kernel first released on September 17, 1991 by Linus Torvalds. Linux is typically packaged in a Linux distribution (or distro for short).

Distributions include the Linux kernel and supporting system software and libraries, many of which are provided by the GNU Project. Many Linux distributions use the word "Linux" in their name, but the Free Software Foundation uses the name GNU/Linux to emphasize the importance of GNU software, causing some controversy.

Rules

Posts must be relevant to operating systems running the Linux kernel. GNU/Linux or otherwise.
No misinformation
No NSFW content
No hate speech, bigotry, etc

Related Communities

Community icon by Alpár-Etele Méder, licensed under CC BY 3.0

founded 6 years ago

MODERATORS

AgreeableLandscape@lemmy.ml

nooter692@lemmy.ml

MarcellusDrum@lemmy.ml

cypherpunks@lemmy.ml

cyclohexane@lemmy.ml

d3Xt3r@lemmy.nz

The Quest for Reasonably Secure Operating Systems (yazomietech.bearblog.dev)

submitted 2 weeks ago* (last edited 2 weeks ago) by yazomie@lemmings.world to c/linux@lemmy.ml

60 comments fedilink hide all child comments

TL;DR - About switching from Linux Mint to Qubes OS from among various other options that try to provide security out-of-the-box (also discussed: OpenBSD, SculptOS, Ghaf, GrapheneOS)

you are viewing a single comment's thread
view the rest of the comments

[–] non_burglar@lemmy.world 21 points 2 weeks ago (2 children)

You aren't going to like this:

Because if you got yourself pwned by a malicious link in discord, your account highjacked, etc., then having discord in a vm, container, chroot, jail, or whatever won't help you on the server-side api abuse that got you pwned. In this case, you yourself should have been more vigilant.

From your article, and with respect, I think its nice you're thinking more about security, but you're mixing up quite a few concepts, and you should probably make smaller moves toward security that you actually understand, instead of going all-in on qubes with only a vague concept of the difference between sandboxing and paravirtualization.

[–] mub@lemmy.ml 12 points 2 weeks ago (2 children)

Slightly harsh but that is the truth of it. Improving the walls and doors will help, but if the guard on the door can be convinced to admit an uninvited guest then the physical security will have much harder time protecting your data. The weakest part of any security system is the people.

[–] non_burglar@lemmy.world 2 points 2 weeks ago (1 children)

Yep.

I was hoping not to sound too harsh, I'll have to work on that.

[–] jjlinux@lemmy.zip 2 points 2 weeks ago

As long as it's factual harsh is even welcome.

[–] kuberoot@discuss.tchncs.de 1 points 2 weeks ago

The weakest part of any security system is the people.

Well, maybe not any, but most ;D

[–] yazomie@lemmings.world 0 points 2 weeks ago

Server-side API? I was talking about avoiding to get one's entire OS hijacked. The qube with the browser might get compromised, but dom0 would stay safely offline, that's my ideal, not the utopic notion of never possibly getting attacked and hacked.

As long as you don't explain what concepts am I mixing up, I don't see the respect, but as a random person on the Internet, feel free to troll, I'll move on.