Linux - SecurityThis forum is for all security related questions.
Questions, tips, system compromises, firewalls, etc. are all included here.
Notices
Welcome to LinuxQuestions.org, a friendly and active Linux Community.
You are currently viewing LQ as a guest. By joining our community you will have the ability to post topics, receive our newsletter, use the advanced search, subscribe to threads and access many other special features. Registration is quick, simple and absolutely free. Join our community today!
Note that registered members see fewer ads, and ContentLink is completely disabled once you log in.
If you have any problems with the registration process or your account login, please contact us. If you need to reset your password, click here.
Having a problem logging in? Please visit this page to clear all LQ-related cookies.
Get a virtual cloud desktop with the Linux distro that you want in less than five minutes with Shells! With over 10 pre-installed distros to choose from, the worry-free installation life is here! Whether you are a digital nomad or just looking for flexibility, Shells can put your Linux machine on the device that you want to use.
Exclusive for LQ members, get up to 45% off per month. Click here for more info.
You know, Ubuntu support is confusing. When I write ubuntu-support-status, it keeps telling me I have unsupported packages on 16.04. I regularly do update. I've learned Canonical leave these packages to focus on development. But I think it's dangerous. If package is not being maintained anymore then it's a security flaw. Even on mailing list (IRC) people explained me Ubuntu support stuff but it seemed a bit annoying for me because it seemed I was right to worry.
How secure is Ubuntu compared to Arch, Fedora, openSUSE or Debian like other distros ?
Note: Yeah, I've Googled it first many times and I've seen lots of similar questions on Google but most people asked wrong question or some people gave irrevelant answers so I felt like to ask it for myself.I couldn't get a good answer for my question. Please, I just want your opinion about it.
Do you have a specific concern about a specific package? That might be a good starting point for a conversation.
Generally speaking, Ubuntu has an excellent reputation for security and is widely used in business, science, education, government, etc. Here are some good resources to start learning about security in Ubuntu: https://ubuntuforums.org/showthread.php?t=510812
Any specific questions, i.e. specific threats that concern you, or specific packages that you are looking for instructions to bring up-to-date?
Do you have a specific concern about a specific package? That might be a good starting point for a conversation.
Generally speaking, Ubuntu has an excellent reputation for security and is widely used in business, science, education, government, etc. Here are some good resources to start learning about security in Ubuntu: https://ubuntuforums.org/showthread.php?t=510812
Any specific questions, i.e. specific threats that concern you, or specific packages that you are looking for instructions to bring up-to-date?
No, I don't have a specific package in my mind. I'm talking system wide security. I've checked from my mom's laptop and felt stupid;
A package might be old, therefore "unsupported," and still work just fine. (ttf-mscorefonts is a great example, because it consists of TrueType™ Fonts!)
You need to do a little research to see if any security vulnerabilities have been reported in the packages that you use. If there is a more recent version of any package then it's probably a good idea to upgrade to it.
I think "sudo ubuntu-support-status --show-unsupported" reports all packages installed through a 3rd party repository. My system is up-to-date and the command reports mariadb-* mythtv-* and so on as unsupported. Most, if not all of them, are installed through a PPA.
For any package, you can use 'apt-cache policy' to learn more. For example:
Code:
apt-cache policy ttf-mscorefonts-installer
By default, Ubuntu only installs software from the Main repository of Canonical-supported open source application. Because open source is all about freedom, the user is free to install unsupported software from other repositories including Universe, Restricted, Multiverse, and various third-party PPAs. I bet if you do an 'apt-cache policy' for each of the packages you mentioned, you will see they don't come from the Canonical-supported Main repository, they come from some other repository, and that is why they are showing as unsupported. For example Microsoft fonts, why should Canonical list that as "supported" by them when it is a closed source proprietary Microsoft product provided as-is?
LinuxQuestions.org is looking for people interested in writing
Editorials, Articles, Reviews, and more. If you'd like to contribute
content, let us know.