undefined | Better HN

0 pointstotallywrong2y ago0 comments

> I don't think OS becomes any less vulnerable than usual Linux/Windows installation.

A modern Linux with SELinux enabled (the default in e.g. Fedora) running apps inside rootless containers (Podman doesn’t even need a daemon) is likely much more secure than your default MacOS or Windows.

0 comments

fkgmeqnb2y ago

If you're talking about desktop use, not really. All the software in a default Fedora desktop install, runs as unconfined by SELinux policies.

Where SELinux really shines is in server installs.

brabel2y ago

I think you're probably @totallywrong

anthk2y ago

TBH, Fedora Silverblue with the parent commenter's approach it's far more secure.

totallywrongOP2y ago

Well Linux powers just about all the most important systems in the world and SELinux was originally developed by the NSA, but I'd love to get your insights.

j / k navigate · click thread line to collapse