new | show | ask | jobs Github

hu3 12 hours ago

What do you mean?

Linux has the most powerful native process isolation arsenal at the user disposal.

And some distros use even more isolation mechanisms on top of the ones provided by the kernel like snap and flatpak.

And then you can recreate the entire thing like a spellbook with nix.

Docker works natively in it. Do I need to say more?

Linux is a decade ahead here with regards for security options available to the user.

▲

charcircuit 11 hours ago | parent [-]

Yet npm isn't using them allowing this RAT to work. It is not secure by default. It requires every app to manually opt in to being secure. This opt in approach to security puts desktop Linux decades behind in regards to security. Not ahead.

▲

hu3 10 hours ago | parent [-]

Linux is not making anything less secure than other OSs.

In fact it even gives the user more security tools.

So I fail to reason on you singling out Linux here.

▲

charcircuit 10 hours ago | parent [-]

Take for example iOS and Android. All apps are sandboxed by default. You can't make a program that just steals all of your credentials like you can on desktop Linux. Having security tools means nothing if they aren't being used.

▲

hu3 7 hours ago | parent | next [-]

No one is running npm in Android or iOS.

A more apt comparison is vs Windows and macOS.

And Linux offer more than these two with regards to security.

	▲	charcircuit 3 hours ago \| parent [-]
		They aren't because Node haven't developed a Node app for them. Desktop Linux does not offer more security than macOS. macOS has proper security around stuff like apps using the mic and camera.

▲

PunchyHamster 7 hours ago | parent | prev [-]

Android is running Linux...

	▲	charcircuit 3 hours ago \| parent [-]
		And they added a lot of code to make it safe for users to install and use apps in general.