On Tue, Jun 17, 2014 at 9:04 AM, Frank Peters <frank.pet...@comcast.net> wrote: > > The problem with all Linux distributions, and not just Gentoo, is that > they are directed toward a multi-user, networked environment. As a > consequence, they exhibit security and other features that generally > make no sense whatsoever for a single-user desktop machine that optionally > connects externally only with an ISP through a router/modem. >... > My system is configured in a way that is quite contrary > to recommended Linux practice (for example I run only and always as the > root superuser and have no need for file permissions) but yet it makes > perfect sense for my situation. >
Keep in mind that there are many elements to data security. Not beeing pwned by script kiddies is certainly one of them, and that doesn't really apply so much to the single-user desktop. However, if you take a broader definition of data security then things become more nuanced. Let's define data security as "the prevention of unintended destruction or dissemination of data stored on a system, or an unintended loss of system functionality." When you use a broader definition then security really ought to be important to the single-user desktop. Features that should be considered important include: * Disaster recovery / backups / etc. * Prevention of unintentional system changes (ie don't be root) * Robustness in the face of or rapid recovery from common failure modes (ie RAID, rapid restoration, etc). * Protection from whatever is lurking in that banner ad your browser just downloaded (ie SSP/SELinux/etc). So, I wouldn't be too quick to dismiss security. My only personally-owned laptop is a Chromebook and its features include being trivial to restore to factory condition, having all data backed up online continuously, having full-disk encryption, and having automatic updates to keep all of that stuff working. That certainly isn't the only model for a desktop machine, but from a data-security standpoint it is about as good as it gets, and it is the result of a design that keeps security in mind. Rich
