which is the best os for security among fedora atomic desktops? I am considering changing to any other atomic desktop which provides the same stability and security as fedora silverblue as the cinnamon version is experimental and i am not used to the gnome version
what is your threat model what you want for security? is your security more security or just more as privacy or both.
there is difrence with security that is going to be relative on your hardware/bios and threat models and then there is privacy things more privacy is not mmore security and more security is not more privacy there is things to concider when going this way by creating your threat model and how much you focus on security and what you mix on privacy since those cant fully work in hand by hand
i use mylaptop for financial transactions
and what is your hardware and bios capabilitys and what is your threat model if you cant provide those i cant help more
I download files from various sources and accept files from various people across India as part of my work. I am not sure about what files they send. I am into digital marketing. so most of the files are hyperlinks , links to websites , jpgs(images)
however i use malwarebytes browser gaurd, noscript suite and norton safe web on my laptoop
My system specifications are
saleeshsuresheyyani@fedora:/etc/yum.repos.d$ inxi
CPU: 10-core (2-mt/8-st) 12th Gen Intel Core i5-1235U (-MST AMCP-)
speed/min/max: 607/400/4400:3300 MHz Kernel: 6.11.5-300.fc41.x86_64 x86_64
Up: 3m Mem: 1.92/15.3 GiB (12.6%) Storage: 476.94 GiB (94.5% used) Procs: 382
Shell: Bash inxi: 3.3.36
saleeshsuresheyyani@fedora:/etc/yum.repos.d$
saleeshsuresheyyani@fedora:/etc/yum.repos.d$ lspci
00:00.0 Host bridge: Intel Corporation Alder Lake-U15 Host and DRAM Controller (rev 04)
00:02.0 VGA compatible controller: Intel Corporation Alder Lake-UP3 GT2 [Iris Xe Graphics] (rev 0c)
00:04.0 Signal processing controller: Intel Corporation Alder Lake Innovation Platform Framework Processor Participant (rev 04)
00:06.0 PCI bridge: Intel Corporation 12th Gen Core Processor PCI Express x4 Controller #0 (rev 04)
00:06.2 PCI bridge: Intel Corporation 12th Gen Core Processor PCI Express x4 Controller #2 (rev 04)
00:08.0 System peripheral: Intel Corporation 12th Gen Core Processor Gaussian & Neural Accelerator (rev 04)
00:14.0 USB controller: Intel Corporation Alder Lake PCH USB 3.2 xHCI Host Controller (rev 01)
00:14.2 RAM memory: Intel Corporation Alder Lake PCH Shared SRAM (rev 01)
00:14.3 Network controller: Intel Corporation Alder Lake-P PCH CNVi WiFi (rev 01)
00:15.0 Serial bus controller: Intel Corporation Alder Lake PCH Serial IO I2C Controller #0 (rev 01)
00:15.1 Serial bus controller: Intel Corporation Alder Lake PCH Serial IO I2C Controller #1 (rev 01)
00:16.0 Communication controller: Intel Corporation Alder Lake PCH HECI Controller (rev 01)
00:17.0 SATA controller: Intel Corporation Alder Lake-P SATA AHCI Controller (rev 01)
00:1f.0 ISA bridge: Intel Corporation Alder Lake PCH eSPI Controller (rev 01)
00:1f.3 Audio device: Intel Corporation Alder Lake PCH-P High Definition Audio Controller (rev 01)
00:1f.4 SMBus: Intel Corporation Alder Lake PCH-P SMBus Host Controller (rev 01)
00:1f.5 Serial bus controller: Intel Corporation Alder Lake-P PCH SPI Controller (rev 01)
02:00.0 Non-Volatile memory controller: KIOXIA Corporation NVMe SSD Controller BG5 (DRAM-less)
saleeshsuresheyyani@fedora:/etc/yum.repos.d$
Corporation Alder Lake-P PCH SPI Controller (rev 01)
02:00.0 Non-Volatile memory controller: KIOXIA Corporation NVMe SSD Controller BG5 (DRAM-less)
saleeshsuresheyyani@fedora:/etc/yum.repos.d$ lsusb
Bus 001 Device 001: ID 1d6b:0002 Linux Foundation 2.0 root hub
Bus 001 Device 002: ID 1ea7:0066 SHARKOON Technologies GmbH [Mediatrack Edge Mini Keyboard]
Bus 001 Device 003: ID 27c6:639c Shenzhen Goodix Technology Co.,Ltd. Goodix USB2.0 MISC
Bus 001 Device 004: ID 0c45:6a1b Microdia Integrated_Webcam_FHD
Bus 001 Device 005: ID 8087:0026 Intel Corp. AX201 Bluetooth
Bus 002 Device 001: ID 1d6b:0003 Linux Foundation 3.0 root hub
saleeshsuresheyyani@fedora:/etc/yum.repos.d$
well on that based i just would make isolated container/sandboxed enviroment where to download all from unknown source with separated HOME to make sure host keeps clean if there is something fishi when you need and know files are safe etc you can just copy those to host Home if needed.
the atomic host wont keep you safe if cyber security fundamentals are not on basic level the atomic is tool to help and keep things more reliable it still needs tweaking and configuring depending on your threat model and what you want to achieve and how secure and how much hardening you want
thank you
sure. i am usinghow do i create a sepearate home for the downloads. i have kasperskay malware detetion tool.
*Kaspersky
you mean to say i need to create an isolated home folder for my downloads . I am unaware of the procedure