Which OS (Linux, BSD or other) is the most secure out of the

If I were you I'd read up on Arch Linux's wiki page on Security topics.

Any Linux distro will do as long as you can fine tune it a bit. Not ubuntu though, and from what I head systemd may somehow compromise security so beware of that, although I'm not sure.

Windows is just for muh Adobe and games.

Never used BSD or MacOS

>>61188647
Why do you say "not Ubuntu"?
what about Debian?

Install Hardened Gentoo

>>61188679
He's retarded

>If you're serious about security, QubesOS is the best OS available today. It's what I use, and free. Nobody does VM isolation better.
Edward Snowden

>>61188647
>systemd may somehow compromise security so beware of that, although I'm not sure.
This is largely just something that's popular to say around here, like hating net neutrality and wanting AMD to literally go bankrupt and give NVIDIA a GPU monopoly.

It's not completely baseless though. The issue with Systemd is it is now a very large very privileged piece of software that has grown beyond it's original "init script" goals. It's size and necessary privilege level means it has an enormous attack surface where exploits might be hiding. The reality of the situation though is that millions of servers all around the world use it every day and remote code execution exploits in anything are exceptionally rare, big bloated piece of shit or not.

Objectively OpenBSD.

>>61188679
Ubuntu, as far as I can tell, isnt bad for security, but it is for privacy. But sure you can have custom installations and even simply turning off these invasive features.

In my mind security and privacy are somehow interconnected but well thats just me. If your concern is to avoid people having access to your computer through the internet and fucking your shit I would just be careful around systemd and that's about it.

>>61188735
I'm tempted to learn OpenBSD
how hard would it be to set up for someone who has only moderate knowledge of Linux (but used it for many years)?

>>61188587
CentOS comes with a few security profiles for SELinux that you can turn on install, you can also use SELinux on any other distro however SELinux its difficult to set up manually.

>>61188805
Not hard at all if you just follow the FAQ.

>>61188788
You probably are referring to the amazon lens shit that isn't even activated by default anymore, and before that it was Unity-only and who uses Unity anyway?
If you're worried about privacy you should avoid Google, not Ubuntu.

>>61188845
Oh well. It's been a while since I last used Ubuntu so yeah

>>61188587
BSD (specially OpenBSD) or CentOS if you wanna go Linux, at least it comes with some nice SELinux profiles

>>61188888
Wasted quints on two pieces of shitware.

File: 526x700sr.jpg (70KB, 526x700px) Image search: [Google]

70KB, 526x700px

>>61188735
>OpenBSD
No
https://cryptome.org/2012/01/0032.htm
http://arstechnica.com/information-technology/2010/12/fbi-accused-of-planting-backdoor-in-openbsd-ipsec-stack/
http://www.cnet.com/news/report-of-fbi-back-door-roils-openbsd-community/

>>61188951
>free software
>backdoors
Pick one.

thoughts on Qubes OS? good or autistic?

>>61189132
The cool thing about it is being able to use Windows in a secure way.

>>61188981
>FBI agents undercover
>pushing backdoors to development

>>61188951
Those claims were never substantiated and OpenBSD conducted a full code audit directly afterward anyway.

The entire story is basically that some guy said "openbsd has a backdoor lol" without backing anything up

>>61189163
what hardware do you recommend to use?

I can run 2 OSes at the same time?

>>61189171
Cool story bro, point to them in the source code then.

>>61188587
Qubes has some tools for bitcoin wallet use.
https://www.qubes-os.org/doc/split-bitcoin/

File: 1491005607-177.png (361KB, 473x675px) Image search: [Google]

361KB, 473x675px

>>61189375
Can i run games with qubes?

>>61189871
>muh vidya

>>61189926
course, it's not all the time, only sporadically

>>61189926
better than bitcoin mining

>>61189871
No, the OS checks if a binary looks like it might be fun and then it makes sure to not run those.

>>61189971
>muh sporadic vidya

>>61189973
yeah, making money is totally worse than wasting your time with vidya

>>61188587
CentOS Fedora and RHEL all come with selinux enabled by default as well as firewalld.

>>61190159
>firewalld
With or without firewall rules.

File: 1352343383815.jpg (65KB, 1280x720px) Image search: [Google]

65KB, 1280x720px

>>61190024
Also, i can run 4k videos?

>>61190345

With? Although I'm not sure how I feel about the default profile on fedora. It leaves ingress open on high range ports, meaning anything can start listening on port 1025 and it's world accessible. Easy enough to fix, but then you're not using defaults like the OP asked for.

>>61190353
>muh animu

File: 235461.gif (2MB, 504x284px) Image search: [Google]

2MB, 504x284px

>>61190418
shut fuck up!

>>61190396
Just asking since firewalld alone wouldn't have to mean shit.

>>61190472
>ok baka senpai XDDD desu ne

>>61188587
Redhat/CentOS/Fedora due to SELinux.

>>61188587
hardened gentoo

>>61191739
CentOS/Fedora VS OpenBSD , in your opinion ?

>>61188587
Out of the box, depending on definition, probably hardened gentoo. Otherwise, qubes.

Best security is to run a custom firejail-based container for each application using aufs or overlayfs, firejail's chroot and x isolation.

>>61191981
how hard is it to set up qubes?

>>61188679
dude the amazon spyglass is hardcoded into unity OF COURSE ubuntu is compromised.

>>61192093
Very easy. The problem is that HVMs are limited and the software is beyond buggy. They've also had fuckloads of problems with systemd and fedora but they're paid to use them so they hack around it instead of using something else.

>>61188951
target psyops. all i can say.

>>61188679
Debian doesn't have SELinux/AppArmor or firewall out-of-the-box, Fedora/Ubuntu are fine.

>>61188587
Jesus

Tux is such a shitty mascot