For my phone, I use Graphene OS. What would be the best desktop Linux option to match the level of security and privacy that GOS provides?
For my phone, I use Graphene OS. What would be the best desktop Linux option to match the level of security and privacy that GOS provides?
What security stuff/mitigations are added on Fedora that are not on Ubuntu?
Ubuntu is bad privacy-wise because it has opt-out telemetry. The telemetry is not very invasive though and I wouldn’t really call it a privacy risk. There are other reasons to prefer other distros over Ubuntu though
Not making a case for Ubuntu but even Fedora has opt-out telemetry.
You’re right. This only counts users though whereas Ubuntu collects information about your system
Looks like they do add quite a bit security features. Having SELinux installed and working out of the box being the biggest. https://fedoraproject.org/wiki/Security_Features
My question is simple: Which of these security features are not enabled/present in Ubuntu that give Fedora an advantage?
SELinux has a functional equivalent called Apparmor that is also enabled out of the box in most distros.
Selinux is more secure then app armor, but more difficult to use. Ubuntu is also pretty secure, I’m just not as familiar with it. I mentioned it for the privacy but, since it used to have some Amazon bloat crapped bundled and telemetry built in.
One thing I noticed with Ubuntu running an nginx reverse proxy, is that it’ll spin up multiple processes if you are proxying more than one Web service and (I think I’ve diagnosed this correctly) due to this app armour profiling breaks.
I think at this point, containerizing nginx with either lxd or docker using apparmor is the next best move. I know SElinux takes things further, but just thought I’d highlight a simple work around. I know people opinion on snaps, but they also use apparmor.
I have nothing against your personal preferences. But maybe compare today’s Ubuntu vs Fedora. It would be a much more fair comparison.
I see zero reason to use Ubuntu over Fedora
What a fantastic internet argument.
why everything gotta be an argument, sometimes it’s just fun to say your opinion like you would talking to someone in person. Wonder what it is about text chat that kind of changes the dynamic
I think they meant privacy. Windonical doesn’t have a good track record on that front…
Nope. GP explicitly mentioned security experts that Fedora employs and other security stuff that Fedora apparently has an advantage on over other distros. I wonder if they knew in particular what these advantages are because that got me curious.
Read their comment again. The first paragraph is about privacy and Ubuntu is only mentioned at that point. Fedora’s default security is only compared to nix and arch.
I used Ubuntu as an example for argument’s sake not as a defence for Ubuntu’s privacy/security features.