Subgraph OS is a relatively lightweight, Linux-based operating system which comes with a slew of security features that its developers hope will be more accessible to general users. It will be presented at the upcoming Logan CIJ Symposium, a journalism-cum-technology conference, in Berlin in March. Possibly the most interesting security feature of Subgraph OS is “Oz,” a system for isolating programs so that if an attacker successfully exploits a vulnerability in one application—such as a PDF viewer—the rest of the machine and network should remain largely unaffected. [...] Conceptually, this approach has similarities to Qubes OS, another security-focused operating system. But while Qubes OS typically runs different isolated domains in different virtual machines—one for your work, one for your personal use, etc.—Subgraph OS isolates individual applications on a more granular level. Subgraph OS is also hardened by Grsecurity, a series of patches Ahmad explained were designed to make “memory corruption vulnerabilities far more difficult to exploit.”
5117 shaares
1 résultat
taggé
Secure-distros