← Back to context

Comment by orangesilk

8 days ago

> [ZoneAlarm] I always found it weird that Linux never really had anything like it.

There was simply no need for it. GNU provided most of the software, spyware was unknown.

Only since comercial vendors package for linux and bring their spyware along, the desire to inspect network rose.

23 comments

orangesilk

Reply
justsid  8 days ago

This is such a naive view on computer security. It’s not just about spyware, which is also not exclusive to commercial vendors.

  • stavros  7 days ago

    It's not, though. There simply wasn't enough malware to worry about. Why would I run a firewall when I was unlikely to ever encounter a malicious program?

    • ShinTakuya  7 days ago

      I mean, supply chain attacks are a thing that could have happened even in the earlier days. Linux almost got backdoored in 2003.

      Also with the number of remote code execution exploits that have occurred in Web browsers over the years it's hard to know for sure if what you installed hasn't been hijacked unless you spent all your time on gnu.org

      1 reply →

  • fsflover  8 days ago

    What else is this about? Debian repositories still contain no malware and if you install software exclusively from them, you'll be safe.

    • m132  7 days ago

      Run OpenSnitch for a while and you'll quickly realize how much of your system does phone home. Off the top of my head:

      - GNOME Shell (extension updates without a way to disable this, weather),

      - GNOME Calculator (currency exchange rates),

      - NetworkManager (periodic hotspot portal checks in most configurations),

      - GDB (debuginfod enabled by default),

      - Firefox (extension updates, push notifications, feature flags, telemetry, ..., some parts cannot be disabled),

      - VSCodium (Open VSX callbacks even when installing extensions from disk with updates disabled, JSON schema auto-downloads, extensions making their own unsolicited requests, ...),

      - Electron (dictionary updates from Google servers, no way of disabling; includes any application running on top of upstream Electron, such as Signal, Discord, etc.),

      - GoldenDict (audio samples fetched from the Internet on word look-up, no way to disable)

      Of course, this is nothing compared to Windows [0] and macOS [1], but the malpractice of making Internet connections without asking, by default, has unfortunately been finding its way everywhere since modems stopped making audible sounds.

      Having read about PRISM and seen the leaked dashboards of Paragon Graphite (said to be used by ICE), and with LLMs bridging the gap between mass and targeted surveillance, I don't want any of this.

      [0] https://github.com/microsoft/calculator/blob/ffd0519676019a0...

      [1] https://sneak.berlin/20201112/your-computer-isnt-yours/

      10 replies →

    • M95D  8 days ago

      Does it contain Firefox? How about Chrome?

      Quote from LittleSnitch:

      > Little Snitch for Linux is built for privacy, not security

      What's your definion of malware in this context?

      4 replies →

    • Asooka  7 days ago

      Yeah I will also be safe if I never turn on the PC, but some of us use computers to do actual work.