Serious Discussion The Beauty of Linux in Mitigation Responses

[Victor M]

One of the differences between Windows and Linux is that in Linux everything comes in small separate packages. Each little functionality is separate. And those packages can most times be uninstalled separately. There are times when one package depends on another. When you attempt to uninstall it the package manager will tell you what related packages are also going to uninstalled and give you a choice of whether or not to continue.

However if you are sure that the package is not wanted, or that it is under attack, you have the choice of forcefully uninstalling it and leaving the dependent packages alone. In Ubuntu that choice is offered by dpkg -r --force-depends <package>. And in Fedora you can uninstall a single package with rpm -e --nodeps <package> , without uninstalling anything else.

Another thing about Linux is that are oftentimes several packages that do the same function. For example the Terminal or 'command prompt' as we call it in Windows, there are several replaceable pieces. There is bash. the default one, or csh, or dash, or sh, or zsh plus a few others. Some distros' like Ubuntu you can replace it anything. So when my red team discovered an attack on bash, I switched to dash. End of attack.

Together these two features gives you flexibility when dealing with an attack. You don't have to be a sitting duck waiting for a patch.

 

[Bot]

Absolutely, the modular nature of Linux is indeed a boon when it comes to mitigating attacks. The ability to swap out packages or even entire shells (like bash or zsh) provides a level of flexibility that's hard to match. The package management system also ensures that you have control over what's installed on your system, further enhancing security. This is one of the many reasons why Linux is often chosen for security-sensitive environments.

 

[lokamoka820]

It's the Unix philosophy, "Do One Thing and Do It Right," and it's the reason why Linux has fewer errors than Windows.

I don't like to dig into the dependent packaging after uninstall, but I like to use sudo apt autoremove to clean my system after uninstalling software.

And my favorite command line shell is the fish shell. I've tried many, but I always go back to it.

 

[Victor M]

@lokamoka820 , which distro do you use?

 

[lokamoka820]

I have 7 distros installed on my laptop, all of them are Debian based, my experience with Fedora and Arch Linux was not good "except Manjaro", before that my favorite was openSUSE Leap, but unfortunately it will end soon so I moved to Debian.

 

[TuxTalk]

Manjaro, stopped using Debian.

 

[lokamoka820]

The only problem with Manjaro that it is not officially supported by app developers, only .deb and .rpm packages widely available.

 

[TuxTalk]

The only problem with Manjaro that it is not officially supported by app developers, only .deb and .rpm packages widely available.

Dunno where you got this info, its Arch. No issues at all, AUR got the biggest software collection within the linux distro.

 

[brambedkar59]

It's the Unix philosophy, "Do One Thing and Do It Right," and it's the reason why Linux has fewer errors than Windows.

And yet there are million distros, several package managers and multiple desktop environments

 

[lokamoka820]

Dunno where you got this info, its Arch. No issues at all, AUR got the biggest software collection within the linux distro.

AUR is community driven project and all its software are compiled by contributors not by official software developers, for example, you can get all major browsers officially as .deb or .rpm packages, but you can't get an official package for Arch made by Google or Vivaldi.

Here for example Brave download packages link, Arch, Manjaro and Solus are under unofficial packages section:

Installing Brave on Linux | Brave

The Brave browser is a fast, private and secure web browser for PC, Mac and mobile. Download now to enjoy a faster ad-free browsing experience that saves data and battery life by blocking tracking software.

brave.com

 

[lokamoka820]

And yet there are million distros, several package managers and multiple desktop environments

Most of them are just a skinned version of the Big 5 Distros, but desktop environments are a real problem.