LinuxMusicians

I think that's ~new @GNU/Linux. OK, since years but now: example VST3, Bitwig, ... .
What do you think about and what are you doing?

42low wrote:Linux itselve is/has the best virusprotection there is

50/50%, - but yes, Linux is ~even safer thanks to package manager, ... and because only ~0,2% use a LAW (Linux Audio Workstation)?
I'm totally linux only 2, but i think the LAW Users change?

- rising & widespread Third-party Software
- executable in your /home folder or with root installed Third-party Software
- ...

Third-party Software == trust in God?

Perfect4Linux_virus?

Using a browser seems like the biggest attack vector on Linux..

I don't think we should be so complacent as to say that we are safe...

@browser: recommendable Add-ons?
https://github.com/gorhill/uMatrix
https://github.com/gorhill/uBlock
https://www.eff.org/https-everywhere

Because of the nature of Linux the risk is usually to the user data rather than the host system. I do not underestimate the importance of my data but the system is safer.

There is clanscan and clamtk as well as chkrootkit ; on the rare occasion over the years I gave them a go they found nothing.

Since the question uses the word "free" I'm going to use its meaning of "free as in freedom". Free software has advantage of having the source code accessible to public which makes it much easier to study it and look for malicious features and security vulnerabilities. When installing such software from the official repository the installer checks for PGP/GPG signatures of maintainers which has gone through the chain of trust. As a result, there is a small chance that someone could intentionally plant a malicious feature inside.

Proprietary software on the other hand is malware by definition.

Lyberta wrote:Since the question uses the word "free" I'm going to use its meaning of "free as in freedom". Free software has advantage of having the source code accessible to public which makes it much easier to study it and look for malicious features and security vulnerabilities. When installing such software from the official repository the installer checks for PGP/GPG signatures of maintainers which has gone through the chain of trust. As a result, there is a small chance that someone could intentionally plant a malicious feature inside.

Proprietary software on the other hand is malware by definition.

I completely agree with this, and someone else up there who said the biggest attack vector on Linux is the browser. It is all that wild west of JavaScript, Flash, and other code that runs on the browser totally unauthorized. Actually, I'd argue that firefox on Linux is less secure than for example Edge on Win10.

Technically speaking, Linux is no more secure (by default) than any other OS, so it's a matter of interest of malware writers. But Linux offers very good possibilities in tweaking the system pretty damn secure for people who are interested.

Lyberta wrote:Since the question uses the word "free" I'm going to use its meaning of "free as in freedom".

I do not mean "free as in freedom" Software which you can install with the package manager.
I mean free_&_$/€(money) Third-party Software (VST/APPS).

Example:
- All instrument, effect and plugin host VST Plugins and VST3 Plugins and soundware for Linux.
https://www.kvraudio.com/plugins/linux/ ... st-popular
# I think this is reliable Code.

- All instrument, effect and plugin host VST Plugins and VST3 Plugins and soundware for Windows.
https://www.kvraudio.com/plugins/window ... st-popular
# ?

khz wrote:I do not mean "free as in freedom" Software which you can install with the package manager.
I mean free_&_$/€(money) Third-party Software (VST/APPS).

The price doesn't matter.

Does anyone here run their browsers (or anything else) with firejail?

Viruses may be one thing but a simple script running as your user could cause you a lot of harm (logging your keystrokes etc). I don't think it's healthy to be complacent risk, lack of known viruses does not mean less risk.

ufug wrote:Does anyone here run their browsers (or anything else) with firejail?

I'm using sandboxing in Fedora, which works much the same way as firejail (although it's based in completely different technique, seccomp vs. selinux).

Why must it a "root" script when he can get your ~/home folder and maybe, if interested, later more?

With your User Account.

sysrqer wrote:Viruses may be one thing but a simple script running as your user could cause you a lot of harm (logging your keystrokes etc).

I don't think firefox's multi-process feature (so-called 'e10') is about security, it's more about performance.