Oddbean

Why Linux is more secure than Windows Open Source First, Linux is open source, meaning anyone can view the code. Because of this, Linux does not have malicious tracking or anything that works against you. Because the code is readily available, Linux gives huge numbers of participants the ability to test security flaws. The operating system improves through the contributions of decentralized individuals looking over the code. Decentralized open source initiatives then progress through a merit based system, in which changes are adopted as they are shown to be needed. Windows has less of an organic feedback loop Linux is in sharp contrast to Microsoft Windows, for which management dictates what changes will take place. With Windows, only those within the company or those that the company hired can view the source code for security flaws. So by trusting Windows, you are essentially betting that these Microsoft employees are better and smarter than the entire rest of the IT community. Management dictates Windows. On the other hand with an open source project like Linux, it is a constant feedback loop of the community finding flaws, and then the development teams responding. Linux has good code because it’s stood the test of time of thousands to millions of eyes looking for security flaws in it that were then corrected. Linux is built by a spontaneous voluntary decentralized ecosystem It’s unknown what security flaws could be found from looking at Microsoft’s code, but there certainly are many instances of viruses and data breaches in the real world. Windows is vulnerable to viruses Linux is more resilient to computer viruses for a number of reasons. In fact, Linux is so secure that you don’t even need anti-virus software. (As an aside, anti-virus software on Windows is another way that you are being spied on. Every file it scans is reported back to the anti-virus company.) Some say Windows has more viruses because it’s more widely used. This propaganda is only applicable to home users because Linux is actually a LARGER share of the enterprise cloud market. And they don’t get viruses because it’s extremely difficult to compromise. Windows has a flawed design Microsoft Windows is vulnerable to viruses by its flawed design of allowing programs either all or nothing access. When you download and run a Windows .exe file, you have to trust the creator because it can do anything once it is run. In sharp contrast, when you get software from outside the package manager’s approved software, it’s usually an AppImage or Flatpak which are automatically sandboxed only have permissions related to that software itself and not the entire system. However, these sandboxes are relatively weak and not as strong as a full-blown virtual machine for isolation, but it’s still better than Microsoft Windows or nothing. This AppImage and Flatpak sandbox system helps provide some security but remember it is a weak sandbox so any untrusted software should be run in a full virtual machine. The goal of any sandbox is to stop malicious software from spreading across your entire computer. Linux software is better vetted Another way that Linux differs from Microsoft Windows is in how you get applications. Every type of Linux (which is called a distribution) has a centralized free app store. The nerdy technical word for this is “package manager”, but it is very similar to an app store on phones. You can easily and effortless install software from your “app store” package manager. This software installation method will dramatically increase your security, since all software is being vetted by the operating system’s creators as being safe. The app store (aka package managers) have most of the basic programs that you’d need when you get started, such as an office suite, picture and video editor, and a web browser. But then is it decentralized? You might be thinking “But Linux is not really decentralized if the operating system’s creators get to pick which apps are in it’s app store” (aka package manager). There’s a few replies to this. The first is that different versions of Linux (called distributions) compete with each other. Anyone could make their own version of Linux, so if you don’t like the contents of one app store, you can go to another one. This competition forces Linux developers to want to have desired software and not to censor. The second reply is that just like Windows, you can download Linux software directly from the website of the creators, if you choose to do so. And if you do this without the app store (aka package manager), then the program itself is sandboxed like we outlined earlier in this article to only be able to modify files related to its own software. Linux Software Updates Easily Not only is Linux software more safe when you get it, but it stays safe over time. With flawed systems like Windows, the user has to update each piece of software individually over time. Since this is extremely burdensome, most users don’t do it, and then they are vulnerable to new security bugs. Updates on Linux are easy On the other hand, Linux lets you update all your software at once in a single typed command. This easy to apply update ensures you will effortless be able to resist the latest hacking bugs across the whole system effortlessly. Follow on Nostr for more decentralized security tips!