azha@lemm.ee to linuxmemes@lemmy.worldEnglish · 1 year agoWe dont need onelemm.eeimagemessage-square95fedilinkarrow-up1703
arrow-up1703imageWe dont need onelemm.eeazha@lemm.ee to linuxmemes@lemmy.worldEnglish · 1 year agomessage-square95fedilink
minus-squarePossibly linux@lemmy.ziplinkfedilinkEnglisharrow-up2·1 year agoThere is no security benefit with immutable Linux
minus-square🦄🦄🦄@feddit.orglinkfedilinkarrow-up1·1 year agoCan you elaborate? Wouldn’t malware need to install something which would not happen on an immutable?
minus-squareEnsignWashout@startrek.websitelinkfedilinkarrow-up3·1 year agoImmutable distros can usually be set to mutable with the correct privileged command. It’s essentially security by obscurity. But I disagree with “no benefit”. An infection miss through dumb luck is still a miss, after all.
minus-squarePossibly linux@lemmy.ziplinkfedilinkEnglisharrow-up1·1 year agoIf malware has root access it can do whatever it wants Things like SElinux and sandboxing is what secures systems.
There is no security benefit with immutable Linux
Can you elaborate? Wouldn’t malware need to install something which would not happen on an immutable?
Immutable distros can usually be set to mutable with the correct privileged command.
It’s essentially security by obscurity. But I disagree with “no benefit”. An infection miss through dumb luck is still a miss, after all.
If malware has root access it can do whatever it wants
Things like SElinux and sandboxing is what secures systems.