DEV Community

loading...

Discussion on: How and Why I switch the Windows 10 to Linux (Ubuntu 18.0 LTS)

Collapse
sasoram profile image
Soram

Many people using linux and open source software belive they're using the most secure and privacy friendly OS without knowing the reality. What else they should be called apart from misinformed? Imo people using linux should know what they're getting into. Traditional linux distros doesn't implement verified boot, selinux, strong sandboxing etc moreover linux is written in memory unsafe languages which makes it prone memory bugs. Linux only have security through obscurity since it isn't active target for malware but security model is non-existent on linux. I'm gonna say again Android != Linux.

Thread Thread
sysgrammer profile image
Amritpal Singh

written in memory unsafe languages? i.e. C, C++? show me a Modern Desktop OS which is on par with Windows and Linux and isn't in C/C++.

Traditional linux distros doesn't implement verified boot, selinux, strong sandboxing etc

Does an everyday linux user need to know this? Don't assume Linux User = Tech Kiddies, there are people who use Linux as their daily driver.

Verified Boot? I'm assuming you're calling UEFI secure boot? The reason behind you have to disable it due to security and yes I agree but you know OEMs disable it so that unauthorised/harmful/3rd party software can't mess with the boot partition and that 3rd party software will include Linux if the OS shipped by OEM isn't Linux. If it is you'll notice it is enabled.

Thread Thread
sasoram profile image
Soram

There is none, but Windows uses modern security tools to prevent, to an extent, issues arising from memory safety. Also there is a lot of work going into switching to memory safe languages especially rust and many parts of Windows and Android are already written in memory safe languages like C#, Java etc.

Does everyday Android or Windows user knows or need to know about the security features? No but security features are there. The point of these security features is to minimize attack surface and if the machine ever gets compromised then try to reduce the damage.

Secure boot != Verified boot
Verified boot is a linux security feature but not widely used. It is used to verify the integrity of the whole system and even apps installed not just boot partition. If you want to know more read this whonix.org/wiki/Verified_Boot#Veri...

Thread Thread
sysgrammer profile image
Amritpal Singh

Understandable, Have a nice day!