Reason for this thread
Writing this topic for those interested (Both for the knowledgeable about Linux security, the non-knowledgeable, and I (somewhat non-knowable about the topic as well)) in hope to start a discussion about the general theme of Linux vulnerabilities and security (of any kind, hack, malware, user stupidity, code error vulnerabilities). You don't have to read it all in this message, just jump in if you got something you would like to add.
If you know similar threads feel free to add links, also again I'm not asking these questions purely for me, but also perhaps others might find answers here useful as well. In general a discussions between those who know, and those who don't.
I put this thread here given that it is not necessarily about Linux Mint, but in general Linux. However it would be sweet to discuss Linux Mint in addition as well.
Cutting to the chase
I'm curious about which extinct you can pull security (when you're not a Linux "guru" or security expert). This means reaching into the realms of the paranoid.
The reason I think it's a good idea to push for maximum security is that attacks and even malware becomes increasingly sophisticated, and as such to stay ahead of the game between the victim and the attacker (In other words, being passive makes you an easy target).
About the malware, as I understand it, it is mostly only possible to appear in Linux if the user themselves install it (I'm aware there are currently very few Linux malware, and none that is not patched, still though, for the sake of the small possibility of malware), or if a hacker plants it after breaking in).
To that end, if I understand it right, Linux is strong against malware on its own (and to some extinct hackers too).
But a user of Linux might sc*ews up and manages to install a Linux malware, or if changing settings in Linux which might make it easier for a hacker to break into the system.
I'm not a believer of the "The most used OS has the most malware" religion without scientific base (an assumption), while to some exthinct it is probably true, but Linux has a large portion of the server market, so it would be weird to say that Linux isn't big enough to get more malware. Inherently as I understand it, it is because how the kernel and system is protected by what one might call a wall analogy (password), seperating the user and user data from the kernel and the system (Hopefully I got that right).
And also given that Linux (at least Linux Mint) out of the box has a different approach to listening to the internet, which only seems to be causing problems if you start installing servers etc., forcing you to install firewalls which is not otherwise needed with Linux Mint ouf of the box. But firewalls do not always protect you, and sometimes hackers can sneak in through the holes in the server firewall meant for otherwise normal traffic. (or malware in windows). (I know very little of this area, I'm quite curious, if anyone feels like elaborating it would be awesome of you).
Another possible here could be a unaware Linux user who installs something that starts listening to the internet without being aware of it (Is that a security problem to begin with?)
Another inherent weakness as far as I understand it, is if the user installs applications with weak code with administrator access (Sudo) (errors, lacking sufficient skills with C++ causing mistakes, memory overflow, etc.), since this creates an opening to the system levels which normally otherwise perfectly seperates the user area and the system area, correct? or is it still secured despite non-malware but weakly written applications?
Other weaknesses that prey on code weaknesses, user unawareness or stupidity, "shortcomings of software design vs. impossibilities to defend against", and so forth?
And finally, how can users not experts in security or Linux security guard themselves better?
I hope someone wants to participate, both the knowable and non-knowable regarding Linux security, as the more discussion on this much needed topic the better.
At least for myself, I feel that good security is a technical monster that I (and I'm sure others too) would like to tame a little more, that only experts can fully handle, and even then it's not always enough (no system is 100% secure, right?).
Thanks for reading, feel free to correct me if I said any nonsense
