Are there any FOSS OS with macOS-level security?

2 points by nicecars 6 hours ago

macOS have superior security compared to standard Linux/BSD distributions even at the software level, separate from their hardware lockdown.

Are there any FOSS desktop OS with equivalent security, including proper verified boot and exploit mitigations? If not, why?

Iolaum 6 hours ago

Yes, Fedora Silverblue would be my recommendation for something balancing security but being mainstream enough.

If you want more mainstream you could go with vanilla Fedora or some spins if you are opinionated about your desktop environment.

If you want more security you can look at things like QubesOS.

p_ing 6 hours ago

> macOS have superior security compared to standard Linux/BSD distributions even at the software level

What evidence do you have to state that claim?

> including proper verified boot and exploit mitigations? If not, why?

Any operating system with TPM and Secure Boot support has this, Windows, Linux, and FreeBSD is in the planning stages for Secure Boot.

It sounds like you're unaware of the available security features that have been available for a significant amount of time on x86.

  • bigfatkitten an hour ago

    There is a huge gap between what's available for Linux (ie the Android and ChromeOS boot systems), and what the mainstream Linux distributions actually implement.

    On the whole, the distros do a terrible job. If you can modify the initrd (which you can on all of them by default), it's game over.

    And that's just secure boot. Linux has no real equivalent to TCC, for example.