Linked by Howard Fosdick on Mon 24th Jun 2013 03:00 UTC
Linux I volunteer as tech support for a small organization. For years we relied on Ubuntu on our desktops, but the users didn't like it when Ubuntu switched to the Unity interface. This article tells about our search for a replacement and why we decided on Xfce running atop Linux Mint.
Thread beginning with comment 565491
To view parent comment, click here.
To read all comments associated with this story, please click here.
RE[5]: Partition lock-down
by Laurence on Mon 24th Jun 2013 16:20 UTC in reply to "RE[4]: Partition lock-down"
Laurence
Member since:
2007-03-26


See my answer in another comment above...

Which comment? None of them address the 'root' point I made.


Access permissions ? So with Linux Mint, when I install the system, instead to lock things, I have to unlock them ? How convenient.

I'm sorry but I thought you said you'd used Linux before.


Preventing the user to access the computer to prevent him making mistakes is sure quite a strange behavior. An operating system turned into a denying access system, that doesn't makes sense. I'm sure there is other ways to "protect" the system. Firewalls, etc, but not locking down the computer.

It's not about protecting from user error. It's about locking unauthorised processes down to minimize the damage they can perform. Firewalls are a whole other type of security system and would have zero benefit in that regard.


Sure, when you start having more than one registered user. But when there is only ONE f--king account, why the need to lock EVERYTHING when an access password would be enough ?

With the greatest of respect, I suggest you have a read up on security practices. It's quite an in-depth subject and it appears like you're holding onto a number of misnomers. As we're now starting to talk in circles, it's clear that you're never going to trust me on this topic, so I'd recommend you do a little research to see that I'm really not making this stuff up ;)


Like I said, preventing the user to access the computer, then the internet, for the sake of "safety" is a pure non-sense, especially on Linux. I don't see what are the threats to the system. Active X ? Sony's root-kits ? IE exploits ? SWF trojans ? Come on...

Actually, exploits have been found with Linux builds of Flash in the past. Then there's Java 0-days. There's been instances where Canonical have inadvertently added trojans to their repos. And that's before you even look at any of the networking software (p2p clients, etc)

Edited 2013-06-24 16:20 UTC

Reply Parent Score: 3