Comments on: Linux Distros For The Paranoid: What Are The Most Secure Distros?

By: Vishal Srivastava

Vishal Srivastava — Thu, 06 Dec 2012 13:09:54 +0000

Will try out Tails. Just finished downloading it after reading your review. Thanks!!

By: dragonmouth

dragonmouth — Sat, 27 Oct 2012 21:41:37 +0000

“Windows absolutely does *not* use Linux (with or without “Microsoft tweaks”) whatsoever. The Windows kernel is a completely different closed-source project which is about as far away from Linux as possible.”
Since Windows is proprietary and closed-source, very few people really know what is contained in the source. So the source can contain a lot of code “borrowed” from other O/Ss, especially the open-source ones like Linux and BSD. All we know for sure is that Windows does not contain any Linux/BSD security code.

By: mmm

mmm — Mon, 15 Oct 2012 05:36:09 +0000

Tor = privacy. Encryption ~ privacy (less or more)
Browser fingerprinting ~ privacy is not possible (almost)
Security is something else.

By: Danny Stieben

Danny Stieben — Thu, 19 Jul 2012 20:44:54 +0000

Great to hear! Plus those attacks on your Gmail means that people just tried to get into your Google account, which doesn’t have anything to do with your Ubuntu desktop itself.

By: Gordo Viajão

Gordo Viajão — Mon, 16 Jul 2012 21:00:48 +0000

Really interesting, been using Ubuntu since 8.04 and had no security flaws on the client side… Only problems I had were brute force attacks on my GMail last year, but nothing of so great harm

By: RedScourge

RedScourge — Sun, 15 Jul 2012 06:53:35 +0000

“And since it is used on laptops, any spyware on it could prove to be of use to anyone who manages to steal it.”

True of all spyware, but immaterial.

“I never made that claim at all.”

No, you didn’t, but many do and I just wanted to point it out so people don’t fall into that trap. Sorry also for interchanging Air Force for Army.

“Then all they need is someone who forgets to disable your alleged spyware”

For that to be true, both this and your claim that someone else could hijack it would have to BOTH be the case simultaneously, which is exceedingly unlikely. They’d be using the spyware for its intended purpose, notice that too high level of documents were accessed on a computer with the spyware installed, and I specifically had mentioned that sort of thing earlier. It’s a possible downfall but everything is risk management.

The other thing to consider is that even if I’m wrong and this is a stupid thing to do, the government is pretty stupid quite often, so they might just do it anyway.

By: Bruce Epper

Bruce Epper — Fri, 13 Jul 2012 07:08:11 +0000

And since it is used on laptops, any spyware on it could prove to be of use to anyone who manages to steal it. Would you set up something like this for your use or for your family members?

the “its US Army, it must be secure!” comment is way off the mark as well. I never made that claim at all. No system will ever be completely secure unless it is never used. And we were referring to an Air Force product anyway, not Army.

Then all they need is someone who forgets to disable your alleged spyware while accessing classified systems remotely (needed document for briefing POTUS).

Your comments just bring up even more doubts that they would bastardize a system in such a manner.

By: Mayur Godhani

Mayur Godhani — Tue, 10 Jul 2012 17:20:45 +0000

Well, i always use Ubuntu on my lappy :)

By: RedScourge

RedScourge — Tue, 10 Jul 2012 16:28:55 +0000

Most mainstream Linux distros now have a SELinux component included by default now, such as Ubuntu LTS, RedHat Enterprise, Fedora, etc. For most people, downloading this stuff is unnecessary.

By: RedScourge

RedScourge — Tue, 10 Jul 2012 16:25:19 +0000

They probably have a secret memo they give to all the Air Force personnel who have high security clearance which tells them how to disable the built in spyware in their OS which tracks what the users are doing. I can’t prove they infact include spyware, but it wouldn’t surprise me. The advantages of including their own spyware in their OS is they can track their citizens or even their enemies if they think the same way you guys do “its US Army, it must be secure!”, but also they can spy on their own soldiers to ensure none of them are spies or planning to leak sensitive internal information they may or may not be cleared to access.

By: Pawpaw Joe

Pawpaw Joe — Mon, 09 Jul 2012 16:36:43 +0000

I agree… those are some good tricks, especially putting temp in RAM, which I would love to know the trick to doing. I just started using Mint and like it more than Ubuntu. If you don’t mind sharing… you will have my prayers and gratitude.

By: Danny Stieben

Danny Stieben — Sat, 07 Jul 2012 22:43:18 +0000

Yes, some distributions (like Fedora) use SELinux features.

Windows absolutely does *not* use Linux (with or without “Microsoft tweaks”) whatsoever. The Windows kernel is a completely different closed-source project which is about as far away from Linux as possible. Sorry, but you’re incorrect.

By: Danny Stieben

Danny Stieben — Sat, 07 Jul 2012 22:40:05 +0000

I suppose one could use the last version, but it’s pretty dated.

Most distributions make use of it. I know Fedora is a heavy, active user of SELinux, which has sometimes given it some harsh criticism (which I find ridiculous).

By: Logan Kemp

Logan Kemp — Sat, 07 Jul 2012 14:41:08 +0000

“SELinux is included in a number of Linux distributions.”
http://www.nsa.gov/research/selinux/code/download1.shtml
You should be able to get the last version from their archive here.
Even though it’s no longer maintained, you can still download it. It’s probably been added to the Linux kernel, though, since it’s so secure.

By: renii

renii — Sat, 07 Jul 2012 08:12:40 +0000

NSA sez New SELinux code is no longer released on this site. SELinux is included in a number of Linux distributions. You can also find the SELinux source code at the following external links.
SELinux kernel code is included in the mainline Linux 2.6 kernel,
available from http://www.kernel.org/
NSA seems to be saying it’s already out there and included in present day releases.

And isn’t the kernel core code in all late windows versions straight from linux w/microsoft tweaks added on?
Hafta agree with John on data saves