• kekmacska@lemmy.zip
    link
    fedilink
    English
    arrow-up
    13
    ·
    5 days ago

    no, Qubes, Bazzite, Garuda were made with security in mind. Containerization, selinux enforcing, hash checks, address space layout randomization is also built in. These are all more secure than Fedora. Qubes for example, uses vm containers to completly isolate every app, so the system is almost impossible to compromise by malware or hacking. Bazzite uses immutable root file system, much like stock android. it may not along well with unix philosophies, but there isn’t really a way for a malicious code to run with elevated privilages or to manipulate system files. Garuda automatically creates snapshota from the system, so if it is compromised, it can be rolled back quickly. Snapshots for external devices or cloud are supported as well. It uses zram compression on swap, this helps avoid data leakages to the disk, so makes sure that after a reboot, every session quits, since data from ram can’t leak on the disk. it also uses firejail and chaotic aur sandboxing. There is a smaller support for secure boot too. So these are all highly secure operating systems. And to some degree, privacy and security overlap each other.

    • UrheaKekkola@sopuli.xyz
      link
      fedilink
      arrow-up
      1
      ·
      4 days ago

      Yeah my bad, you’re right. I got too stuck on tails, which is in my opinion more focused on privacy than security, and ignored everything else.

      • kekmacska@lemmy.zip
        link
        fedilink
        English
        arrow-up
        2
        ·
        4 days ago

        Tails in itself is reasonably secure too, but it was mostly designed for use with public computers and forensics, and ofc to conceal network activity that might seem suspicious. And it is a good solution if you need a portable linux, and your android phone is not a good choice for your use case.