Hacker News new | past | comments | ask | show | jobs | submit login

In all seriousness, why is Fedora the mosts worthy Linux out of them all, in terms of privacy and security? I thought those two were kind of an inherent staple of all Linux distros? In the past I've used Debian Stable with AwesomeWM (the inspiration for Mjolnir) and it felt pretty secure?



I've only been following Fedora development from a distance, and haven't had time to look at Fedora 25 yet. From memory, there's a bunch of things:

* Fedora and Ubuntu are more aggressive about compiling security features into the packaged binaries, whilst Debian considers package build flags to be the decision of individual maintainers, so coverage is more piece-meal.

* Fedora ships SELinux enabled. I believe that current versions of Android is the only popular non-Red Hat Linux-based system that does that. The common compliant about RH's SELinux implementation is that it is so restrictive about system integrity that it blocks actual system administrators from doing routine tasks unless they remember to change the appropriate SELinux policy settings first.

* Fedora 25 now uses a Wayland implementation for managing graphics by default, rather than X, so that the security issues of X don't apply.

* Fedora 24+ includes Flatpak, so that there is a system for sandboxed applications. Fedora 25 provides the UI integration for non-technical users to run Flatpak packages (once developers build them).

* The RPM/DNF package management system is more stringent about checking downloaded packages than APT.


I meant the hat not the distro. I use Ubuntu, I am happy with it. Before that used Debian and Slackware. Was happy with those too. Used it for 15 years. Can't complain. I don't feel my computing has been hurt by using Linux. And over time it seems as it's the only sane choice.


I misread your post too, but now it's clear on a reread that you meant the hat!

I am also a proud and happy Linux user going on about 10 years now, and what's great is that I know all the knowledge I've acquired will still be relevant many decades into the future -- not sure the same can be said of Windows or MacOS.


It did have a comparatively low number of security vulnerabilities in 2015.

I also often see it brought up that Fedora uses SELinux by default.


Fedora 25 is best ever, you should try it. Now that then replaced X with Wayland it should become be ever more secure.


Does Fedora still recommend wipe->reinstall from scratch as the default upgrade path?


I'm not sure what they recommend, but the in-place upgrade path for Fedora works really really well.


Nope, Gnome Software can upgrade systems now.




Consider applying for YC's Fall 2025 batch! Applications are open till Aug 4

Guidelines | FAQ | Lists | API | Security | Legal | Apply to YC | Contact

Search: