For some, particularly businesses reliant on software that can’t perform on anything but Windows (and occasionally MacOS), sure. For individuals it is much easier. Installed Linux Mint a few months ago and I set up a VM for the stuff I truly needed some form of Windows for (tried dual booting for a bit but found that inconvenient). None of these are insane lengths, unless the cutoff for that is, “anything above minimal effort.”
if you think your average linux distro is trustworthy, you’re mad.
there’s a tons of binary blobs, not to mention all the known and unknown hardware backdooers that you can’t remove by running linux.
most of the software your average user installs is untrustworthy as well.
the security model of linux is outdated at best, no proper isolation of programs. the linux kernel is leaky as heck and filled with tons of bloat.
You can get a Intel ME disabled laptop or a 15 year old one one that never had it, then put on some FSF approved OS that bans closed source software and compiles everything from scratch, isolates every program like with jails or Qubes or one of the newfangled container based OSes and tunnels all your internet traffic through some sorf of anonymization layer like Tor or I2P and ideally it’s all happening in memory only and never writes to disk. But then again we know there are hidden microcontrollers with full memory access hidden behind obscure instructions in CPUs.
You can’t tell me those aren’t insane lengths.
Practically speaking there is no such thing as a “trustworthy” computer and suggeting linux magically makes it trustworthy is laughable. Completely ridiculous.
You need hardware disconnects on all sensors and physical obstruction of devices like cameras in order to have some level of certainty that they aren’t being misused.
In the past, I had dual booted windows and linux (Ubuntu, I believe), and eventually, windows managed to screw with the bootloader and brick the install. Never tried dual booting again. Windows VM on Linux is a much better solution.
Every single time I boot up my windows install it screws up the boot order and I have to go into UEFI and force it to load GRUB on startup again. Fucking malware.
and what access controls does limux provide forcamera access? because I haven’t seen any such fearure yet. I’m all for linux but it does not help with webcam issues.
to solve this issue you do need to go insane lengths. like apparmor/selinux or whatnot.
For some, particularly businesses reliant on software that can’t perform on anything but Windows (and occasionally MacOS), sure. For individuals it is much easier. Installed Linux Mint a few months ago and I set up a VM for the stuff I truly needed some form of Windows for (tried dual booting for a bit but found that inconvenient). None of these are insane lengths, unless the cutoff for that is, “anything above minimal effort.”
if you think your average linux distro is trustworthy, you’re mad.
there’s a tons of binary blobs, not to mention all the known and unknown hardware backdooers that you can’t remove by running linux.
most of the software your average user installs is untrustworthy as well.
the security model of linux is outdated at best, no proper isolation of programs. the linux kernel is leaky as heck and filled with tons of bloat.
You can get a Intel ME disabled laptop or a 15 year old one one that never had it, then put on some FSF approved OS that bans closed source software and compiles everything from scratch, isolates every program like with jails or Qubes or one of the newfangled container based OSes and tunnels all your internet traffic through some sorf of anonymization layer like Tor or I2P and ideally it’s all happening in memory only and never writes to disk. But then again we know there are hidden microcontrollers with full memory access hidden behind obscure instructions in CPUs.
You can’t tell me those aren’t insane lengths.
Practically speaking there is no such thing as a “trustworthy” computer and suggeting linux magically makes it trustworthy is laughable. Completely ridiculous.
You need hardware disconnects on all sensors and physical obstruction of devices like cameras in order to have some level of certainty that they aren’t being misused.
deleted by creator
Even more importantly, software can be exploited.
And know how to discern obfuscated code
In the past, I had dual booted windows and linux (Ubuntu, I believe), and eventually, windows managed to screw with the bootloader and brick the install. Never tried dual booting again. Windows VM on Linux is a much better solution.
Every single time I boot up my windows install it screws up the boot order and I have to go into UEFI and force it to load GRUB on startup again. Fucking malware.
There’s a reason that my windows install and my linux install are always on separate disks. Can’t fuck up my bootloader if you don’t know it exists.
and what access controls does limux provide forcamera access? because I haven’t seen any such fearure yet. I’m all for linux but it does not help with webcam issues.
to solve this issue you do need to go insane lengths. like apparmor/selinux or whatnot.