/tech/ - Technology

>>1694 (OP) 
does this fool not know how a dll works
>Cover or remove any webcams or microphones
oh nvm hes clearly mentally disabled

>Stay away from desktop if you can and stick to mobile devices. 
>Some of these operating systems do have some privacy invasive telemetry but it can usually be disabled in the settings and verified with a network analyzer tool like Wireshark if you wish to be certain. 
>Use Signal, preferably with a burner or VoIP number. 
what the fuck am i reading

yeah, and you know what, this guy is involved in developing on Whonix and some other projects, because of this, people can believe this nonsense because he is "expert" or "authority"

>>1694 (OP) 
I took look at https://madaidans-insecurities.github.io/security-privacy-advice.html and...
>muh iphone good
>muh apple good
>muh non-free good
>muh Windows S and ChromeOS good because more (((restrictions)))
>muh mobile devices are more secure
>muh verified boot 
<only works if you use your own key
> bit (((buttlocker))) 
<implying proprietary crypto is good
<implying bitlocker is not compromised
>Always update. 
<You also get the latest ciaware when you update your non-free OS
>muh telemetry can always be disable in your proprietary OS
>Disable WiFi and Bluetooth when not in use. 
<Still advocating proprietary software
>sandboxing
<not a silver bullet but it's true that sandboxing should be used more often.
<also OpenBSD's pledge(2) & unveil(2), NetBSD's secmodel(9), FreeBSD's CAPSICUM(4) and DragonFlyBSD's VKERNEL(7) are worth looking into
>Do not give apps excessive permissions. 
<Still advocating Botnet 10

> Is it true
No
>or he is biased?
Not that either; he is just plain wrong in most of his points.

>>1709
Seems like a knowledgeable one and knews flaws of foss/linux stuff but they just happen to use that for a quality troll post.
From security standpoint, those official devices and official builds are good, but let's not forget security and privacy are different.
Sure there is backdoors everywhere which is a different matter and more likely for targeted deanonymization which even your experienced cryptographer or privacy expert might not even know about.
Modern motherboards and laptops have UEFI firmware and ring negative access through the programs in ring 3, everything is compromised.

ad89f78ff07da108396c22e0b2a1894919756853b5a974b9d4708821fe1c7a4e.png
[Hide] (134.7KB, 733x464)

>>1694 (OP) 
Madaidans is a cunt. He appears in every itoddler / brave / windows shilling thread on major imageboards. He doesn't deserve to be on the internet.

>>2024
>backdoors everywhere are not a security matter

>>2953
Go back...

Did you upgrade to Veyndows 11 already?

41467b7675ccaa1bdcfae01d1c251d69735b58aa713004fca82300377c98a4e9.jpg
[Hide] (210.8KB, 875x1167)

>>2953
Just for your image alone I'm going back to windows 10 and trying my hand on windows 11. No way I'm spending time with retards like you lot.

>>3092
Good goy.

>>1694 (OP) 
>Linux is bad from security perspective
Not exactly a secret, you can find far better sources too.
Also keep in mind that security and prvacy are not the same thing, and that there are multiple ways to deal with either before even getting to the choice of OS.

5f6e1066b5c539c45f56c0d6d2c277bf90385a7cabd9e0a7e5c95b64c4bd4ec4.jpg
[Hide] (322.3KB, 1280x720)

>>3093
At least I'm better than it/you as a person, channy.

>>3096
cope faggot

b259dcea146948525bd1009f123cb29e1206f902cccb70a86136cec83cec02a4.gif
[Hide] (1.5MB, 320x240)

>>3100
Good, keep spamming the same mentally retarded shit and see more and more people siding with your enemy. No amount of technical knowledge will save your cause if one keeps being a 4channy on the the internet.

>>3103
No him. More retarded users leave Linux alone the better. No more freedesktop faggotry, shitd, dbus, all of those shit are because of having to cater to them which let (((redhat))) gained control over major distros. Side all you want with an inferior OS. Fuck off with that shit, more users is not always better. Majority of human living are niggers, go to Africa with them. Importing niggers inevitably lead to degeneration. Can't you see them same happening in your fucking country now? And you propose welcoming more niggers because they will be scared away? Let them be, better yet, keep them in Windows and Macshit. I am going to shill on plebbit and 4/g/ to make sure that happens.

>>3103
The reverse psychology is working as intended.

>>3106
Freedesktop, maybe. Systemdicks and dbus going away isn't going to happen as this is what the corporate sponsors of Linux want - FAGMAN, Redhat, etc. Doesn't have anything to do with normalfags. What could become worse is general userland experience, thanks to more software hitching itself to Gnomefags that will continue to poorly imitate Apple and development of Wayland being rushed to the point of creating a pile of shit full of security holes identical to X.

>>3116
Systemd and dbus ARE Freedesktop. It's actually remarkable how much of the cancer plaguing modern Linux goes back to that group.

>>1694 (OP) 
He's right though,  it's loonix fannois unable to take criticism of their hobby OS. Loonix nerds are even more insufferable than macfags in how they tie their identity to the products they use.  At least apple ecosystem is expensive and a filter exists that keeps mentally challenged retards out somewhat,  Loonix is free and allows entry for any faggot who's insecure about himself and wants to change his identity to something more niche.

>>1694 (OP) 
Back in the day they said Linux had less virus risk ergo by risk they mean control, as in you have it. It is like when android has jewgle saying emulators like epsxe r harmful just because it is too dated to see an ad, "harmful" to whom?

the most used os has the most viruses traditionally as it is the target.

>>1698
But he's indeed rougher. Desktops usually are indeed insecure because the way they operate. This is why there are less cases heard of viruses and malware affecting phones than desktops because its not very easy for software to run on phones.
You can analyse traffic to know if something is spying on you. That's how people find if even open source software is phoning home,  not by sifting through millions of lines of code. 
>>1695
Running insecure dll files is disabled by default in Windows.

>>11393
Android is the most used OS now and it has lesser viruses affecting it than Windows or even most desktop OSes does.  That's due to how it operates,  you'll have to deliberately give an application permission to run and access to various phone resources when running applications in phones vs on desktop OSes where people traditionally expect  everything to be unrestrictive.

>>11395
It's due to having no control. Example: codec error

>to fix simply THROW INTO TRASH AND BUY ANOTHER XDDDD

>>11392
Air is free and allows niggers like you to survive, guess I have to stop breathing.
>>11394
Security depends on threat models. There is no universally secure and useful system as there are different category or levels of thread models. If malware is all that you care about, get a system where you can't install anything, eg os on rom. Higher level of threat models crosses into privacy and state level adversaries. Only an auditable system can be trusted in these cases.
Everyone should be on the highest level of threat modelling because people who are affected are an attack vector. When privacy is not considered, a determined adversary (eg government) can collect information en mass to control susceptible people to affect nom-susceptible people.

Just look at the list of CVEs:

https://www.cvedetails.com/product/47/Linux-Linux-Kernel.html?vendor_id=33
https://www.cvedetails.com/product/32238/Microsoft-Windows-10.html?vendor_id=26

And consider that Windows 10 is a complete OS, while Linux is just the kernel. Yes, the freetard kernel that exists purely out of dogma and which has a cult around it has more holes than Windows 10. Who would have thought.

>>11408
So is FreeBSD good? I checked and it only seems to have 4 vulns.

>>11408
a backdoor in linux is a cve
a backdoor in windows is a feature

>>11411
>a backdoor in linux is a cve
>a backdoor in windows is a feature
This. Would glowniggers someone just do that? Go on the cve database Internet and just withold 0days lie?

>>11410
>So is FreeBSD good? 
No, but it's usable (like OpenBSD). For example, the FreeBSD's RNG was broken in -current (development tip version) for 4 months before someone noticed it: https://lists.freebsd.org/pipermail/freebsd-current/2015-February/054580.html 
>"... This means most/all keys generated may be predictable and must be regenerated.  This includes, but not limited to, ssh keys and keys generated by OpenSSL."

That kind of thing just wouldn't happen in OpenBSD. OpenBSD is very usable as desktop if you don't mind the performance which is actually okay for normal but non-intensive use. See, >>5388 for details.

But if you want a *BSD with good performance (and ZFS) install FreeBSD. ZFS is the only reason to use FreeBSD in my honest opinion.
(NetBSD also has ZFS but idk if they have added support for using it as root fs /  . DragonFlyBSD has Hammer2 file system which is very nice also)
DragonFlyBSD and HardenedBSD are also usable but they have fewer developers and users (but HardenedBSD fork is very close to FreeBSD and, because of this, some call it "patch set" instead of fork). NetBSD is imo not usable but it can be interesting choice for old hardware.

>>1694 (OP) 
every product you listed is toddler nocoder dogshit including linux

Stop replying to this over two years old bait thread.

>>11422
I have a lot of experience with a dozen OSes due to being a long term NEET and an obsession with portability, and I can safely say the BSD pecking order goes:
- OpenBSD
- NetBSD
- FreeBSD

OpenBSD is the only one that is actually a cohesive, well integrated system. The others may claim to be so, but it's a lie. FreeBSD, for instance, has you go read the wiki to go figure out the multiple config files and you have to edit and commands you have to run to do every simple task.

For instance, want to use your phone's USB tethering on OpenBSD? Simple. When you plug such a device in, OpenBSD automatically configures the new network device, but does not actually put it to use. To put it to use, you can follow the "Dynamic Host Configuration Protocol" section of the FAQ:
https://www.openbsd.org/faq/faq6.html
There is only one step:
>run a command that tells the DHCPv4 daemon to autoconfigure the new device.
As explained in the "Network Configuration" section at the top of the same page, you can simply put the same command (minus the ifconfig bit) into a file named /etc/hostname.$if where $if is the name of the interface, and it'll autoconfigure on boot.

How do you do it on FreeBSD?
The wiki explains: https://docs.freebsd.org/en/books/handbook/advanced-networking/#network-usb-tethering
The steps go:
<load some kernel modules related to USB tethering
<tell the bootloader to tell the kernel to load those modules on boot
Now the tethering works as a regular network card, and you can proceed to configure it like any other, so we move to another part of the handbook:
https://docs.freebsd.org/en/books/handbook/network/#config-dynamic-ip-v4
OK, it shows us what command to run for one-time configuration, and the command to run to make it autoconfigure on boot. It also tells us about an optimization we can do ("background dhclient") and how it can cause issues.

So here's the difference between the OpenBSD and FreeBSD way:
>OpenBSD is a monolithic kernel, so there are no kernel modules.
<FreeBSD is a hybrid kernel, and most tasks, this one inclusive, involve loading the relevant kernel modules, and optionally setting them up to load on boot. Also notice how one-time module loading and automatic module loading use different syntaxes.
>On OpenBSD, the ifconfig command is the central place for all network configuration. You run one command and it tells the DHCPv4 daemon to autoconfigure a specific network card's IPv4, and you can paste the same command into a config file and it'll do it every boot. 
<On FreeBSD, many different programs handle networking, just as OpenBSD, however, there is no central place for configuration, so you must use many programs, each with their own syntaxes, many very different as not all of them come from FreeBSD and follow its style. You use one program with one syntax for one-time configuration, and you give a different syntax to a different program for autoconfiguring on boot. If you were to configure a wi-fi cart, you'd use yet another program with yet another syntax. Do you see how the amount of learning you have to do scales linearly?
<FreeBSD additionally gives you another way of doing the same thing just because

Try to do almost anything, this is how it goes almost every time: OpenBSD has the simple (both easy to use and easy to implement) design that is easily learned from man pages, and FreeBSD does things the complicated, haphazard way that needs an entire book to explain it. But do note that FreeBSD is to Linux what OpenBSD is to FreeBSD, and NetBSD typically sits between OpenBSD and FreeBSD in the convenience department.

Also, NetBSD has one of the biggest package repositories out there. This is because pkgsrc is portable and runs on many other OSes, so it also gets developers who use UnixWare, HP-UX, Solaris, etc. OpenBSD has the smallest repositories of all the BSDs. But hey, you can use NetBSD's package manager on OpenBSD if you want.

On the other hand, OpenBSD lacks a fancy modern FS. FreeBSD and NetBSD have ZFS, that means you get compression, good RAID support, checksumming, and more features that you might need if you have lots of drives and perhaps run a service or something of the sort. Meanwhile, OpenBSD has the slowest FS of all because it both lacks journaling and soft updates, and it doesn't have any of the fancy modern features.

Also, FreeBSD is the best performing BSD, OpenBSD the worst.

NetBSD also has no FDE support to this day.

When picking a BSD, the reasoning is simple. If OpenBSD covers your use case, use OpenBSD, there is no reason to use the others. If OpenBSD doesn't fit your use case but NetBSD does, that's the next best thing, so use that, there is no reason to use FreeBSD then. Otherwise, go FreeBSD.

You left out jails and other odds and ends, but yes.

>>12068
deportation is the only solution

>>12073
>topic is originally about linux security vulns sandboxes and openBDSM jails
<discussion shifts on trying to deport wokehub users for muh wrongthink code
jokes on you wigger i dont even live here and i use a non-angloid VPN, Gonna track my browser fingerprint or what?
jokes aside we need a quick way to undo troon commits in a single button press without forking the whole darn thing and missing out any important update patches

>>3103
classic gif, funny pup