Linux distros log a TON about what you’re doing by default.
Tonnes of software uses systemd-journald to log errors, the bash shell saves everything you type into the terminal, and wtmp, btmp, utmp all track exactly who is logged in and when, and the kernel uses dmesg to log a bunch of stuff.
While the system isn’t sending these logs to Microsoft or Google, anyone who gets into your system like police or hackers can see almost everything that you have been doing.
If you want to be private, you must disable them.
If someone can read your journal logs and your kernel logs you’re already fucked.
Dmesg requires root. The journal requires group permission. That would mean they’re either hacked in remotely through either your account or through root. Or they have physical access. The latter which can be resolved using LUKS.
If someone is in remotely you’re already screwed as that can mean they can easily get autostarting scripts going or malware.
Yeah agreed. You have much bigger problems to deal with if someone is getting access to these things without your permission.