Thoughts about an article talking about the insecurity of linux

1. bubblewrap

   1 81 4,402 7.6 C

   Low-level unprivileged sandboxing tool used by Flatpak and similar projects

   

   If your threat model is somewhat normal a linux installation is not that bad, more so if you harden it a little. Choose a distro with selinux (or have fun setting it up yourself), use wayland, and to bubblewrap things off, isolate and restrict the more exposed applications like the browser.

2. InfluxDB

   www.influxdata.com featured

   InfluxDB – Built for High-Performance Time Series Workloads. InfluxDB 3 OSS is now GA. Transform, enrich, and act on time series data directly in the database. Automate critical tasks and eliminate the need to move data externally. Download now.

   

3. Flatseal

   2 55 1,372 7.5 JavaScript

   Manage Flatpak permissions

   

   Some truth in that. However, they did not mention that Flatpak is by far the easiest to harden if it's not already. Using something like Bubblewrap or Firejail require a lot more time and knowledge to further harden than Flatpak. Flatpak has Flatseal, which is elegant and easy to use, and the docs are well written too (https://github.com/tchx84/Flatseal/blob/master/DOCUMENTATION.md, or menu button > Documentation).

4. apparmor-profile-everything

   3 3 87 0.0 Shell

   Discontinued deprecated - maybe replaced by: `apparmor.d`

   

   https://github.com/Whonix/apparmor-profile-everything/graphs/contributors Author seems to be contributing to something AppArmor based for Whonix so I don't think they are unaware of it existing.

5. MonoDevelop

   4 16 2,681 1.7 C#

   Discontinued MonoDevelop is a cross platform .NET IDE

   

Suggest a related project