It is not realistic to turn the Linux kernel into something with decent security. Best effort approaches of applying as many security fixes as possible and attempting to address whole bug classes and exploit techniques are useful, but ultimately aren't a solution to the problems.
Conversation
Every major release of the Linux kernel makes the problem worse. The complexity and attack surface keep growing at a ridiculously fast pace. The work on hardening moves at a far slower pace than other work making the Linux kernel less secure. Applies to a lot of other projects.
3
2
5
There's an enormous amount of complexity and attack surface. No one needs a backdoor in a project completely plagued by pervasive vulnerabilities. There are so many vulnerabilities that automated fuzzing is churning out discovered vulnerabilities far faster than they get fixed...
1
2
3
I have heard about Encro phone which uses android and seems to be very robust in security thanks to locking out everything and no one have so far suceed to breake it, but they are very expensive for normals users. dont know how they did it so secure.
1
This Tweet is from a suspended account. Learn more
This Tweet is from a suspended account. Learn more
It's a substantial regression for privacy and security and they're dishonest about many things. By design, they've also gone out of the way to prevent crucial firmware security updates as part of playing semantic games to receive a certification of having no proprietary software.
1
1
It still has all the same proprietary firmware, but they've prevented updating it, specifically so they can claim that it's effectively hardware and doesn't quality as software. It's insecure by design. The hardware choices are based around that too, not having privacy/security.
1
1
Separately from the hardware, PureOS is a massive regression for privacy and security compared to mainstream mobile OS design / implementation. I don't see how it's an improvement. I don't see how it's relevant as a 'solution' to a thread on Linux kernel insecurity at all either.
This Tweet is from a suspended account. Learn more
The solutions to these problems aren't all these products by charlatans building businesses around pretending to solve privacy/security problems while generally making things substantially worse and just scamming people out of money. Most privacy/security products are scams.
1
1
2