-160

Your Linux PC is NOT private out of the box (lemmy.world)

submitted 5 days ago by FG_3479@lemmy.world to c/opensource@lemmy.ml

50 comments fedilink hide all child comments

A lot of software uses systemd-journald to log errors,
The bash shell saves everything you type into the terminal,
wtmp, btmp, utmp all track exactly who is logged in and when,
The package manager logs all software you install and keeps the logs after uninstallation,
And the kernel writes part of the RAM which may contain sensitive information to the disk when your PC crashes.

While the OS isn't sending these logs to Microsoft or Google, anyone who gets into your PC while you are logged in and your data is unencrypted can see much of what you have been doing.

If you want to be private, you must disable them.

you are viewing a single comment's thread
view the rest of the comments

[-] hoshikarakitaridia@lemmy.world 9 points 5 days ago* (last edited 5 days ago)

This is more of a "be aware of your footprint" and less of a "security concern". This post is pressing hard on the fear of data getting stolen, however none of these things are major ways in which your data gets stolen.

It's phishing, social engineering, default configurations, weak passwords, no MFA, compromised online-services and supply-chain-attacks, and then, and only then are we even talking about actual CVEs in your local system and app environment. And usually we are talking old ones; for apps which you haven't updates in a while, as they are the most common.

What I'm saying is for your target audience, this is exactly the wrong thing to focus on. Tech savvy users might wanna look into this but they are very likely aware of all these things, and amateurs definitely should focus on basic security practices.

[-] FG_3479@lemmy.world -2 points 4 days ago

The problem with logs is that drive encryption is uselss in a Ross Ulbricht like situation where someone takes your laptop while ut is unlocked.

[-] TheFogan@programming.dev 1 points 4 days ago

and what isn't... pretty sure in a Ross Ulbricht situation... there was more than enough stuff he needed to remain private currently open, and in the main files. Ulbright could have been on a live CD on a computer with no physical hard drive, and it wouldn't have helped him since they nailed him after he had logged into the silk road.

[-] hoshikarakitaridia@lemmy.world 2 points 4 days ago

Yeah if you wanna go tht way you have to go etheral and memory only. That means either a VM with auto reset, or tails or something. However, this is not feasible for the average Linux user.

this post was submitted on 07 Feb 2026

-160 points (6.5% liked)

Open Source

44260 readers

46 users here now

All about open source! Feel free to ask questions, and share news, and interesting stuff!

Useful Links

Rules

Posts must be relevant to the open source ideology
No NSFW content
No hate speech, bigotry, etc

Related Communities

Community icon from opensource.org, but we are not affiliated with them.

founded 6 years ago

MODERATORS

Cloak@lemmy.ml

kevincox@lemmy.ml

CrypticCoffee@lemmy.ml

Lettuceeatlettuce@lemmy.ml