Forums
New posts
Search forums
News
Security News
Technology News
Giveaways
Giveaways, Promotions and Contests
Discounts & Deals
Reviews
Users Reviews
Video Reviews
Support
Windows Malware Removal Help & Support
Inactive Support Threads
Mac Malware Removal Help & Support
Mobile Malware Removal Help & Support
Blog
Log in
Register
What's new
Search
Search titles only
By:
Search titles only
By:
Reply to thread
Menu
Install the app
Install
JavaScript is disabled. For a better experience, please enable JavaScript in your browser before proceeding.
You are using an out of date browser. It may not display this or other websites correctly.
You should upgrade or use an
alternative browser
.
Forums
Software
Operating Systems
ChromeOS & Linux
The future of security on Linux
Message
<blockquote data-quote="bayasdev" data-source="post: 919392" data-attributes="member: 41799"><p>Let's be honest, Ubuntu desktop it's by far the most secure noob-friendly Linux distro , by default Ubuntu enables <a href="https://ubuntu.com/server/docs/security-apparmor" target="_blank">AppArmor</a> and enforces its usage on sandboxed Snap applications downloaded from the Ubuntu (Snapcraft) store.</p><p></p><p>[ATTACH=full]251334[/ATTACH]</p><p></p><p>[URL unfurl="true"]https://snapcraft.io/blog/where-eagles-snap-snap-security-overview[/URL]</p><p></p><p>The Linux community has seen with bad eyes the movement of Canonical to replace the traditional deb packages with Snaps, ranting about slowness due to universal dependencies and increased disk usage but they don't realize how vulnerable the current binary system is, on a Linux system there's basically no sandbox beyond whatever an app decides to implement by its own like Chrome or Firefox. I think that explains why many of them have an elitist aptitude trying to keep Linux a non-mainstream thing because otherwise their systems will be as vulnerable as Windows to 0day exploits.</p><p></p><p>The short-term solution for this problem are the use of containerized application platforms like <a href="https://snapcraft.io/" target="_blank">Snap</a> and <a href="https://flatpak.org/" target="_blank">Flatpak</a> but a better long term alternative is the use of immutable OSTree (a versioning control system like Git but for operating systems) based distributions like <a href="https://docs.fedoraproject.org/en-US/fedora-silverblue/" target="_blank">Fedora Silverblue</a>, <a href="https://microos.opensuse.org/" target="_blank">OpenSUSE MicroOS</a> or <a href="https://endlessos.com/es/" target="_blank">Endless OS</a></p><p></p><p>Being Endless OS the most popular and pre-installed immutable system out there that most people using it don't even know this fact.</p><p></p><p>[ATTACH=full]251333[/ATTACH]</p><p></p><p>An immutable system means that the OS image deployed it's the same on all installations, applications can only be installed from those containerized stores (Flatpak in the case of Silverblue) making it less prone to bugs or malware attacks. There's still a very long way to come but this is definitively the future Linux should seek.</p><p></p><p>PD: Anyways, I prefer the lightness of Arch Linux until Linux becomes mainstream</p><p></p><p>[ATTACH=full]251335[/ATTACH]</p></blockquote><p></p>
[QUOTE="bayasdev, post: 919392, member: 41799"] Let's be honest, Ubuntu desktop it's by far the most secure noob-friendly Linux distro , by default Ubuntu enables [URL='https://ubuntu.com/server/docs/security-apparmor']AppArmor[/URL] and enforces its usage on sandboxed Snap applications downloaded from the Ubuntu (Snapcraft) store. [ATTACH type="full"]251334[/ATTACH] [URL unfurl="true"]https://snapcraft.io/blog/where-eagles-snap-snap-security-overview[/URL] The Linux community has seen with bad eyes the movement of Canonical to replace the traditional deb packages with Snaps, ranting about slowness due to universal dependencies and increased disk usage but they don't realize how vulnerable the current binary system is, on a Linux system there's basically no sandbox beyond whatever an app decides to implement by its own like Chrome or Firefox. I think that explains why many of them have an elitist aptitude trying to keep Linux a non-mainstream thing because otherwise their systems will be as vulnerable as Windows to 0day exploits. The short-term solution for this problem are the use of containerized application platforms like [URL='https://snapcraft.io/']Snap[/URL] and [URL='https://flatpak.org/']Flatpak[/URL] but a better long term alternative is the use of immutable OSTree (a versioning control system like Git but for operating systems) based distributions like [URL='https://docs.fedoraproject.org/en-US/fedora-silverblue/']Fedora Silverblue[/URL], [URL='https://microos.opensuse.org/']OpenSUSE MicroOS[/URL] or [URL='https://endlessos.com/es/']Endless OS[/URL] Being Endless OS the most popular and pre-installed immutable system out there that most people using it don't even know this fact. [ATTACH type="full"]251333[/ATTACH] An immutable system means that the OS image deployed it's the same on all installations, applications can only be installed from those containerized stores (Flatpak in the case of Silverblue) making it less prone to bugs or malware attacks. There's still a very long way to come but this is definitively the future Linux should seek. PD: Anyways, I prefer the lightness of Arch Linux until Linux becomes mainstream [ATTACH type="full" width="860px"]251335[/ATTACH] [/QUOTE]
Insert quotes…
Verification
Post reply
Top
