azha@lemm.ee to linuxmemes@lemmy.worldEnglish · 24 hours agoWe dont need onelemm.eeexternal-linkmessage-square89fedilinkarrow-up1628arrow-down151
arrow-up1577arrow-down1external-linkWe dont need onelemm.eeazha@lemm.ee to linuxmemes@lemmy.worldEnglish · 24 hours agomessage-square89fedilink
minus-square🦄🦄🦄@feddit.orglinkfedilinkarrow-up1·19 hours agoCan you elaborate? Wouldn’t malware need to install something which would not happen on an immutable?
minus-squarePossibly linux@lemmy.ziplinkfedilinkEnglisharrow-up1·1 hour agoIf malware has root access it can do whatever it wants Things like SElinux and sandboxing is what secures systems.
minus-squareEnsignWashout@startrek.websitelinkfedilinkarrow-up2·15 hours agoImmutable distros can usually be set to mutable with the correct privileged command. It’s essentially security by obscurity. But I disagree with “no benefit”. An infection miss through dumb luck is still a miss, after all.
Can you elaborate? Wouldn’t malware need to install something which would not happen on an immutable?
If malware has root access it can do whatever it wants
Things like SElinux and sandboxing is what secures systems.
Immutable distros can usually be set to mutable with the correct privileged command.
It’s essentially security by obscurity. But I disagree with “no benefit”. An infection miss through dumb luck is still a miss, after all.