#8 reawakened my nervousness about the lack of virus protection on Linux. With every milestone we celebrate it becomes more likely that malicious people target desktop Linux with their malware, and I don’t think the “Linux is inherently secure” mentality helps. I hope clamav’s on access scanner is fixed and improved so it becomes commonplace before there’s some big newsworthy scandal.
Well yeah, you need to use Linux, the Linux way to make it secure.
If you are running VSCode as root after having logged into the DE as root and installing extensions willy-nilly, it won’t matter that your RHEL has SELinux installed.
That’s not it though. Linux doesn’t have a problem with viruses, didn’t have it before, doesn’t have it now. Predicting that it’s going to start right now 20 years in a row isn’t a good idea refardless, and pointing it out is a right thing to do.
Which doesn’t mean it couldn’t really start one day.
I don’t think a Linux anti virus program would be such a big security win. Phishing is the biggest security threat to most users, and no amount of software can prevent that.
Sure, downloading and running random shit is a concern, but people in that group are a bit of a lost cause. The best solution for that is to harden the OS, prevent running executables through the GUI, or from user folders (I think SELinux could do that), disable sudo on the user account, and only allow installing Flatpaks. The security of Flathub may not be perfect, but it’s a smaller attack surface than the whole internet.
But even if you do that, an Indian call center scam is still going to manipulate your grandma into buying Amazon gift cards, so… It’s a lost cause.
Is there antivirus for Android? I mean there surely is, but Android does not really need it because it’s built from scratch to give each app as little permissions as possible*. Desktop Linux is going in the same direction.
* technically. This does not mean that Android is secure in terms of privacy.
AFAICS this screens software before it goes into the store, or screens sideloaded apps on device before installation. That’s still far from antivirus as Windows users know it.
App Scanning: It automatically scans all apps on your device—regardless of where they were downloaded (though it focuses heavily on apps from the Google Play Store and those sideloaded).
Real-time Protection: It runs safety checks on apps before you download them from the Play Store.
Periodic Device Scan: It periodically scans your device for Potentially Harmful Applications (PHAs), which are sometimes called malware.
Warnings and Removal: If it finds a potentially harmful app, it will warn you, disable the app, or in some cases, remove the app automatically.
For sure. I recall installing an open source mahjong from the android google store when I bought my first ever android device about a decade ago. Instantly took over my tablet and kept throwing ads at me. And it got into the root and wouldn’t go away when doing a reinstall. Fortunately it was a super cheap tablet that I only got to toy around with. But I have had no interest in ever getting another android device since then.
Granular permissioned access for apps from trusted supply chains is better than attempting deny lists based on signatures (AV).
I still use it, but I put way more effort into SLSA, securing containers, flatpaks, and limiting their blow back. From there its keeping up with CVEs in ways that do not create more or break functionality.
I will say A LOT of the Linux software ecosystem is was more secure than Window’s default.
https://www.markdownguide.org/basic-syntax/
Putting a space is a good practice for compatibility because different software behaves differently. But the standard doesn’t specify it per se.
The Markdown format expects a space after whatever number of #s you put at the start, for it to be a corresponding level header.
Due to different parsers having different types of leeways, it becomes a bit difficult to make sure stuff always matches.
e.g. I was once mistaken about the way tabs work for multi-level bullets and numbering because GitLab had more leeway. Using discount, I realised where I was being wrong.
#8 reawakened my nervousness about the lack of virus protection on Linux. With every milestone we celebrate it becomes more likely that malicious people target desktop Linux with their malware, and I don’t think the “Linux is inherently secure” mentality helps. I hope clamav’s on access scanner is fixed and improved so it becomes commonplace before there’s some big newsworthy scandal.
AV is a joke. Best thing is ephemerality. No persistence
Immutable, ephemerable, granularly permissioned, and encrypt EVERYTHING to enforce said permissions.
1000x better than software signature hunting
It’s all fun and games until some asshole slips something into your trusted package manager.
Exploits are the deal pain
You lost me at the encryption part. How does encrypting enforce permissions?
Well yeah, you need to use Linux, the Linux way to make it secure.
If you are running VSCode as root after having logged into the DE as root and installing extensions willy-nilly, it won’t matter that your RHEL has SELinux installed.
People were saying the exact same thing when I first started using Linux in 1999-ish
What is survivorship bias aka gambler’s fallacy?
I’m not saying Linux is immune, just that people have said that, practically word-for-word, forever.
That’s not it though. Linux doesn’t have a problem with viruses, didn’t have it before, doesn’t have it now. Predicting that it’s going to start right now 20 years in a row isn’t a good idea refardless, and pointing it out is a right thing to do.
Which doesn’t mean it couldn’t really start one day.
I don’t think a Linux anti virus program would be such a big security win. Phishing is the biggest security threat to most users, and no amount of software can prevent that.
Sure, downloading and running random shit is a concern, but people in that group are a bit of a lost cause. The best solution for that is to harden the OS, prevent running executables through the GUI, or from user folders (I think SELinux could do that), disable sudo on the user account, and only allow installing Flatpaks. The security of Flathub may not be perfect, but it’s a smaller attack surface than the whole internet.
But even if you do that, an Indian call center scam is still going to manipulate your grandma into buying Amazon gift cards, so… It’s a lost cause.
Is there antivirus for Android? I mean there surely is, but Android does not really need it because it’s built from scratch to give each app as little permissions as possible*. Desktop Linux is going in the same direction.
* technically. This does not mean that Android is secure in terms of privacy.
The Linux desktop is not really going in the same direction as Android
Not that “antivirus” software any more or less useful. It is mostly snake oil.
Yes there is a Google Play Protect. There is also a service that checks every single App on the Store separately.
Though the effectivity is debatable.
There are third party ones but I have not heard anything good about any of them. I am not sure they are legitimate
AFAICS this screens software before it goes into the store, or screens sideloaded apps on device before installation. That’s still far from antivirus as Windows users know it.
In theory it does all of below:
For sure. I recall installing an open source mahjong from the android google store when I bought my first ever android device about a decade ago. Instantly took over my tablet and kept throwing ads at me. And it got into the root and wouldn’t go away when doing a reinstall. Fortunately it was a super cheap tablet that I only got to toy around with. But I have had no interest in ever getting another android device since then.
Granular permissioned access for apps from trusted supply chains is better than attempting deny lists based on signatures (AV).
I still use it, but I put way more effort into SLSA, securing containers, flatpaks, and limiting their blow back. From there its keeping up with CVEs in ways that do not create more or break functionality.
I will say A LOT of the Linux software ecosystem is was more secure than Window’s default.
Why are we shouting?
Anyway, don’t waste your time with “antivirus” software. That is not how you secure a system.
Your viewer must be parsing
#8as# 8.You’re free to not ‘waste time’ with anti-virus but I prefer the peace of mind.
You need to put a backslash before the hash tag. In Markdown a # is a headet
No? There needs to be a space between on piefed and that’s how it works on github too.
https://piefed.social/comment/8602660
https://www.markdownguide.org/basic-syntax/
Putting a space is a good practice for compatibility because different software behaves differently. But the standard doesn’t specify it per se.
As Lojcs said…
The Markdown format expects a space after whatever number of
#s you put at the start, for it to be a corresponding level header.Due to different parsers having different types of leeways, it becomes a bit difficult to make sure stuff always matches.
e.g. I was once mistaken about the way tabs work for multi-level bullets and numbering because GitLab had more leeway. Using
discount, I realised where I was being wrong.The whole problem is because format doesn’t actually expects the space there, and it’s left to the interpretation of the parser
I thought the whole problem was that there was no de-facto standard and people kept on making their deviations while still calling it Markdown.
I personally like how Doxygen implements it.
Yes, but projects like Wayland which are trying to do this get shouted down.