Security?

All Gurus once were Newbies
Forum rules
There are no such things as "stupid" questions. However if you think your question is a bit stupid, then this is the right place for you to post it. Please stick to easy to-the-point questions that you feel people can answer fast. For long and complicated questions prefer the other forums within the support section.
Before you post please read how to get help
Post Reply
sdcougar
Level 2
Level 2
Posts: 63
Joined: Thu Jul 22, 2010 9:45 pm

Security?

Post by sdcougar » Wed Dec 13, 2017 8:56 pm

I'm now online with 18 Sarah. Always been told don't have to worry about viruses in linux. So, I'm secure? No vulnerability to hacking?

Wish there was a 'sticky' on this for Newbies to either let us know that we are secure or if we need to do anything in addition to installing the download of Mint.

Nothing we should use like we had to on windows...malware bytes, anti-spyware...?
Lenovo G50 AMD A8 Linux 18 'Sarah' 64 bit Cinnamon

User avatar
Schultz
Level 6
Level 6
Posts: 1281
Joined: Thu Feb 25, 2016 8:57 pm

Re: Security?

Post by Schultz » Wed Dec 13, 2017 9:25 pm

sdcougar wrote:
Nothing we should use like we had to on windows...malware bytes, anti-spyware...?
No, you don't need that on Linux. The link below is to a website by forum member Pjotr, who really knows his stuff. Putting AVs and the like on a Linux system will actually decrease your security.

https://sites.google.com/site/easylinux ... t/security

This link is to a recent ZDnet article. Read the first 3 paragraphs.

http://www.zdnet.com/article/mint-18-3- ... s-forward/

User avatar
Pierre
Level 17
Level 17
Posts: 7289
Joined: Fri Sep 05, 2008 5:33 am
Location: Perth, AU.

Re: Security?

Post by Pierre » Wed Dec 13, 2017 9:31 pm

just to re-iterate that - - you don't need any of those "Extras" in your New Linux System
8)
and most of those so-called " vulnerabilities" are generally confined to some Server Situation,,
- and not to any specific Linux Desktop Operating System.
which, all means,, that you more safe now, than you ever were, on that Other Operating System.
Image
Please edit your original post title to include [SOLVED] - when your problem is solved!
and DO LOOK at those Unanswered Topics - - you may be able to answer some!.

User avatar
jimallyn
Level 18
Level 18
Posts: 8419
Joined: Thu Jun 05, 2014 7:34 pm
Location: Wenatchee, WA USA

Re: Security?

Post by jimallyn » Wed Dec 13, 2017 10:51 pm

I have used Linux since 2002 with no anti-virus or anti-malware software, and none of my Linux computers have ever been infected with any virus or malware. Nor has the computer of any Linux user that I know of, which would take in a LOT of people, since I have been active on Linux forums the whole time I have been using Linux, and have never seen a valid virus/malware report. (Now and then somebody will ask if something on their computer is a virus. Like some feature deliberately added to Linux.) I won't say that it's impossible to get a virus or malware on Linux, just that I have never heard of it.
Image

“If the government were coming for your TVs and cars, then you'd be upset. But, as it is, they're only coming for your sons.” - Daniel Berrigan

davidmedin
Level 2
Level 2
Posts: 52
Joined: Tue Nov 28, 2017 2:56 am

Re: Security?

Post by davidmedin » Wed Dec 13, 2017 11:54 pm

Can I just say one thing, re: security. By default the Linux installer does not encrypt your disk, which means that ANYONE who gets a hold of your laptop / desktop / server can drop into root mode via Grub and do whatever the hell they want - including changing your password and logging in to your account to steal all your files!

The ONLY way around this that doesn't involve massive amounts of effort is to encrypt your disk during setup! Unlike Windows or Mac, Linux does NOT allow you to encrypt your disk after you've installed the OS!

A massive, massive security hole if you ask me!!!

User avatar
sammiev
Level 4
Level 4
Posts: 369
Joined: Sat May 19, 2012 12:16 pm

Re: Security?

Post by sammiev » Thu Dec 14, 2017 12:03 am

davidmedin wrote:Can I just say one thing, re: security. By default the Linux installer does not encrypt your disk, which means that ANYONE who gets a hold of your laptop / desktop / server can drop into root mode via Grub and do whatever the hell they want - including changing your password and logging in to your account to steal all your files!

The ONLY way around this that doesn't involve massive amounts of effort is to encrypt your disk during setup! Unlike Windows or Mac, Linux does NOT allow you to encrypt your disk after you've installed the OS!

A massive, massive security hole if you ask me!!!
Let's see now.

They need to get by the security system on the house, then the 150 lb dog and if that dosn't stop them, I'm sure the wife will. :roll:

If they can get by all of that, they can have the computer.

User avatar
Jim Hauser
Level 5
Level 5
Posts: 506
Joined: Mon Jun 30, 2014 10:08 pm
Location: Pascagoula, Mississippi

Re: Security?

Post by Jim Hauser » Thu Dec 14, 2017 2:48 am

davidmedin wrote:Can I just say one thing, re: security. By default the Linux installer does not encrypt your disk, which means that ANYONE who gets a hold of your laptop / desktop / server can drop into root mode via Grub and do whatever the hell they want - including changing your password and logging in to your account to steal all your files!

The ONLY way around this that doesn't involve massive amounts of effort is to encrypt your disk during setup! Unlike Windows or Mac, Linux does NOT allow you to encrypt your disk after you've installed the OS!

A massive, massive security hole if you ask me!!!
Let's see... I use a password by default, I use a password with screen locking, I have good (CISCO) router, I use a VPN. I have never used any anti-virus or anti-malware products with Linux. I have never used an encrypted disk with Linux. I do not use laptops (big security risk.) Oh wait, an encrypted drive might be good for a laptop. Been that way for 4 years now without a problem.

I was not aware that anyone could drop into root mode without a password. The biggest holes in a Linux system are usually created by bad habits and laziness.

And by the way, my computer is safe along with my stereo, tv and other household goodies... I have a big dog too... :)

User avatar
Jim Hauser
Level 5
Level 5
Posts: 506
Joined: Mon Jun 30, 2014 10:08 pm
Location: Pascagoula, Mississippi

Re: Security?

Post by Jim Hauser » Thu Dec 14, 2017 3:09 am

I might add that encrypting your disk may not be the default option on Linux Mint but it is an option! You just have to pay attention when installing. The software is only half of the story, the other half is the person sitting behind the keyboard...

davidmedin
Level 2
Level 2
Posts: 52
Joined: Tue Nov 28, 2017 2:56 am

Re: Security?

Post by davidmedin » Thu Dec 14, 2017 3:58 am

Jim Hauser wrote:
davidmedin wrote:Can I just say one thing, re: security. By default the Linux installer does not encrypt your disk, which means that ANYONE who gets a hold of your laptop / desktop / server can drop into root mode via Grub and do whatever the hell they want - including changing your password and logging in to your account to steal all your files!

The ONLY way around this that doesn't involve massive amounts of effort is to encrypt your disk during setup! Unlike Windows or Mac, Linux does NOT allow you to encrypt your disk after you've installed the OS!

A massive, massive security hole if you ask me!!!
Let's see... I use a password by default, I use a password with screen locking, I have good (CISCO) router, I use a VPN. I have never used any anti-virus or anti-malware products with Linux. I have never used an encrypted disk with Linux. I do not use laptops (big security risk.) Oh wait, an encrypted drive might be good for a laptop. Been that way for 4 years now without a problem.

I was not aware that anyone could drop into root mode without a password. The biggest holes in a Linux system are usually created by bad habits and laziness.

And by the way, my computer is safe along with my stereo, tv and other household goodies... I have a big dog too... :)

^

Same applies for any Windows or Mac PC. (In the 15 or more years or using Windows, from Windows 2000 on, I have never been taken out of commission by a virus. Not even once. Mixture of using security software and using common sense.)

And it doesn't have any bearing on the fact that a Linux Mint install is horribly, horribly insecure by default - especially on a laptop. I mean ... root access from Grub without requiring a password? Must be some kind of oversight, surely?

User avatar
Pjotr
Level 20
Level 20
Posts: 10780
Joined: Mon Mar 07, 2011 10:18 am
Location: The Netherlands (Holland)
Contact:

Re: Security?

Post by Pjotr » Thu Dec 14, 2017 5:31 am

Well, then set a BIOS password which you have to enter before even Grub launches. That's what I've done with my laptops. Not failsafe, but it buys you some time after a theft....

Much ado about physical access. Note that physical access will always be risky, no matter what.
Tip: 10 things to do after installing Linux Mint 19 Tara
Keep your Linux Mint healthy: Avoid these 10 fatal mistakes
Twitter: twitter.com/easylinuxtips
All in all, horse sense simply makes sense.

User avatar
Moem
Level 16
Level 16
Posts: 6530
Joined: Tue Nov 17, 2015 9:14 am
Location: The Netherlands
Contact:

Re: Security?

Post by Moem » Thu Dec 14, 2017 5:34 am

Right, it's not like a laptop running Windows or a Mac OS will keep your data safe once someone has physical posession of it...
Image

If your issue is solved, kindly indicate that by editing the first post in the topic, and adding [SOLVED] to the title. Thanks!

DAMIEN1307
Level 5
Level 5
Posts: 971
Joined: Tue Feb 21, 2017 8:13 pm
Location: Alamogordo, New Mexico

Re: Security?

Post by DAMIEN1307 » Thu Dec 14, 2017 9:56 am

i would like to add to this...1 yr ago a friends adult son died in a car accident...he brought me his sons laptop running win 10...it was password protected on bios/boot...he didnt know the password and brought it to a computer shop here in town that charges 80 dollars an hour to troubleshoot etc...240 dollars later they gave it back to him saying it would be impossible to crack...with a free password cracker that i had downloaded from the internet and put on a USB, i bypassed his bootup password long enough to download and crack the laptop password and gained total access...total time?...15 minutes...password was way too simple...it was "dad"...he then asked me to put linux mint on it as i had already done this on his other computers...if i can do it, any village idiot can also do this and by the way, i didnt charge him for this...he was still grieving...system is only as secure as the passwords used and even then, an idiot like me can still bypass and crack em...there is good security practices, then there is ultra-paronoid tin foil hat style security...how much is enough and how much is overkill?...i had just recently been given 14 computers from a Gov't agency and found 2 of them that they missed during their clear bios and dban operations...i asked them if they wished to clear them themselves...their reply to me? we trust you to do these before you put linux on them for the school kids your donating them too...we would have never given them to you for this unless we could trust you to do so, and we know that your using higher than DOD standards...end of story...so please remove the tin foil hats...as a whole, though i believe in as complete privacy as is possible in this day and age, nothing is perfect...linux desktops/laptops are far more secure than anything else out there thus far right out of the box...DAMIEN
ORDO AB CHAO

Post Reply

Return to “Newbie Questions”