yes exactly! i'm glad he isn't just another Linux fanboi..so many Linux content creators are not completely honest when catering to new users which just confuses new users we need a little more open and frank talk about Linux.

Then continue running your windows signed in as the ADMINISTRATOR user and turn off the permission popup. If any system can be hacked and the user's skill is the only thing that matters go ahead. It's easy to have these empty, "moderate" takes. Linux is objectively better, even for unskilled users. If I set up an immutable distro or automatic BTRFS snapshotting their system will never suffer from malware unless it's some ultra duper hardcore CIA malware.

Never? Perhaps less likely. Ignorance and stupidity abound these days.

@@spicynoodle7419are you really comparing running windows as an admin with running Linux as a non-root/sudo user? How much damage can the user do if they’re put in the sudoers file? Or if they’re able to log as root?

This should be common sense though. There is no bullet proof software

You’re right if by “us” you are referring to the more nerdy types. As I see it, our numbers are getting smaller. I’m seeing more users with the typical attitude that computers should be bulletproof machines which are easy to use like an appliance…no real understanding necessary. These folks aren’t as focused on control but on convenience and ease of use.

@@-Engineering01- No argument there. I was talking as one computer nerd to another. I was describing the situation as I saw it. No judgement intended. For me, control is more of an issue which makes me more willing to dig deeper into the nuts and bolts of Linux. Your engineering side might lead you to take some things apart to see how they work. Cool but not my thing. There are countless varieties of nerdy. You do you. I’m doing me. Have fun!

​@@-Engineering01-Exactly! Nobody _needs_ to understand that your banking info could be stolen from a vulnerable computer in order to use that computer! Nobody _needs_ to understand that the proprietary software that they depend on for a living could be shut down by the maker at any moment! Just like how nobody _needs_ to understand that the new mandated remote killswitches for engines could be hacked and triggered while you're driving at 75mph down the highway in order to drive their cars! Ignorance is bliss!

@@-Engineering01- That's right! Your safety is NOT your responsibility! Pass the buck! Let them deal with the important matters, you have other things to do! It's either the typical lack of critical thinking ability which is so common these days or you're deliberately avoiding my point of how stupid it is for people to choose convenience over understanding.

@@runeheadah Indeed until one’s ignorance costs them dearly.

That's a great saying! ... It's a good job I don't run a server any more... XD though if I did, it would be OpenBSD for its devotion to security and its relatively large, audited system.

I've seen 2 out of 4 PCs at my work place getting wannacry back when it was making it's rounds. I was spared because I've used an adblocker. We found out the attack vector for the infected PCs was likely a malicious banner add.

The biggest problem is easy to guess passwords, they get the password then port over to a persons PC. Passwords should be no less than 15 characters, symbols, numbers, capitols, and don't ever use real words, phrase's etc

@@STONE69_ How's that's supposed to work? The average PC is at least behind a router firewall so you can't even establish a connection in the first place. You'd need to go out of your way to enable some kind of RDP, VNC or SSH daemon and port forward it in order to be vulnerable to some kind of password guessing shenanigans. And if you do that, then a password probably isn't the best choice in the first place. Go with an SSH key.

An air-gapped computer.

What we need is an internet kill switch, turn it off when not needed. Especially people that use Windblows and mac.

Logical. :) I'm the opposite. My Windows auto-updates, but when I used Linux I never let it update because it could bring change when my health wasn't good enough to deal with it. A bit paranoid, perhaps, but a habit I developed in the 00s.

I get most of mine from wallhaven.

Likewise.

Yep same. You get dumb asses on here literally if you look right now saying that they didn't update their windows when turning on their system and even seeing videos where a guys says you don't need update often... 😆 These are the same people though that will complain in general that windows gets viruses.. funny how that works out.

I'm sure the majority of server aimed malware is coded for Linux.

"You vill own nothing", get over it. -- Klaus Schwab This has been true since covid and becomes more obvious by the day. A lot of folks will fool themselves by thinking that they own something. They keep pondering on their so called rights, but eventually they will own nothing. I for one welcome our new overlords! Let them have what they desire! Let me say it like Arnold: "Screw you your freedoms"

Indeed.

In the end it depends on your personal threat model. You can definitely mitigate many privacy invading practices. There are some low hanging fruits that everybody can and should pluck IMO. Just rolling over and giving up is just a victim mentality.

​@@Xaito 100% agreed - trying to regain a sliver of privacy nowadays is daunting, but we can't just resign to handing over all of our data and saying "why even try?"

I know nothing about Macs, so I just had to assume

About 10 years ago, I knew a sysadmin who was finding his niche as a fixer of older systems still in use. He made this little bar graph in IRC chat with | characters for difficulty and $ for how much you got paid. Windows's difficulty bar was less than half the length of Linux's and the pay more than double. VMS's difficulty bar was much shorter still and the pay, I don't know, it was too long ago, but I remember it was _a lot!_ :)

Seeing those extra steps misled me into thinking Linux is more secure all the way back in 1998. Many years later; mid-2010s in fact, I had a friend who described his _rebellious youth._ He would go onto certain websites, download "modules" and hack into Linux servers. It was like a game: you get in, you try to keep others out. He says he had no idea what he was doing, and I believe him because 20 years later he still wasn't a programmer like he wanted to be. He quit Linux for OpenBSD the same year I got Linux and formed this opinion about privileges and security. Besides all this, Windows now asks the user for permission to do administrator-type tasks.

@@eekee6034 Sorry, but this is just boosting with no to little backing in reality. Yes Windows will give you a dialog with a "Ok" button as "Security", and because this is so "safe" it has been bypassed many times all ready. While on Linux your always required to give the actual password if you want admin rights, you can't just bypass this because you selected that you should be the administrator when you setup your computer. But Windows security have gotten better over the years, but still suffers from that it's built with security as an afterthought. While Linux was built with security in mind from the beginning. And this is because in the early days it got popular with system administrators that demanded security.

@@Zandman26 Yours is exactly the kind of misinformation I'm trying to counter. You're entirely wrong about Windows "security as an afterthought"; home editions have long been based on the NT kernel designed for professional use, including servers. As for Linux, look up the history of the Internet in the 90s and reread my post. In the 90s, over 90% of websites ran on LAMP -- Linux Apache MySQL PhP -- and as I explained, children could hack into those servers with no deep understanding. This shows how meaningless it is to say, "Linux was designed with security from the beginning." You're looking at a feature meant to keep professional users from giving in to temptation in the 70s and imagining this has any real use in blocking malware. I wish I still had my old CD-ROMs from the 90s because there was a kernel document in which Linus Torvalds says he realized he had to get serious about security in connection with the 2.0 kernel. That was 1996. My acquaintance quit Linux as too insecure in 1998. There's also a comment relating a remote root exploit in kernel 2.2, year 2000. This involved an lpr daemon the server administrator didn't even know was running -- _exactly_ like a big complaint against Windows security in -- what was it... the mid-00s I think -- and just as easily blocked with firewalls. I'll leave you to do your own research on Windows Firewall, but I'm very happy with it. Note that the admin interface matters; make security difficult and the average server will have more holes. Here's another issue: For many years, well into this century, Linux security was heavily criticized by security professionals because privileges were granted with a pseudo-user and group scheme, not a capability scheme. This goes back to the _marginal_ machines Unix was designed for in the 70s, combined with the fact that it wasn't designed to be a top-tier OS. MULTICS (developed 1964-67) had capabilities and a whole lot else besides. Unix was small and lightweight. This can be hard to understand. Even though I'm nearly 50, I'm a youngster relative to the history of Unix, and so it was hard for me to learn that Unix was primarily the cheap option for cheap computers, relative to the norms of serious professional computing. Unix never was the most secure OS and Linux inherited its design. It spread into some high-end computers as it became something of a standard, with many implementations and relatively many programmers and admins who knew how to work with it. Why did Linux stick with this bad design into the 00s? Likely for performance, initially on the barely adequate servers of the 90s, later finding a home on supercomputers. Linux is so optimization-heavy as to anger some proponents of good clean design. There's so much more; much I don't know because I learned a very difficult and painful lesson long ago: security is too large and deep a field for me. I once imagined that Linux was secure for the same reasons as you, completely against the words of competent professionals who have been telling the truth all along.

Yeah the do whenever you run apt. It is for Ubuntu Pro