Linux Mint is insecure, according to a Canonical-employed Ubuntu developer who says he wouldn’t do his online banking on a Linux Mint PC. The developer alleges that Linux Mint “hacks out” important updates. Is this a real problem or just fear-mongering?
The Ubuntu developer involved has gotten certain facts wrong and damaged his own case, but there’s still a real argument to be had here. Ubuntu and Linux Mint deal with updates in different ways, and each has its own trade-offs.
A Ubuntu Developer’s Allegations
RELATED:What’s the Difference Between Ubuntu and Linux Mint?
Oliver Grawert, a Canonical-employed Ubuntu developer, started the verbal warfare with this message on the Ubuntu developers mailing list. In it, he stated that security updates “are explicitly hacked out of Linux Mint for Xorg, the kernel, Firefox, the bootloader and various other packages”.
Download Linux Mint 19.1 Tessa. Our latest release is Linux Mint 19.1, codename 'Tessa'. Read the documentation. Read the release notes. Choose your favorite edition below. If you're not sure which one is right for you, 'Cinnamon 64-bit edition' is the most popular. Linux Mint is free of charge (thanks to your donations.
He provided a link to the Mint Update rules file, stating that it “is a list of packages [Mint] will never update.” This is incorrect — the file does something more complicated than that, but we’ll go into that later. He went on: “i would say forcefully keeping a vulnerable kernel browser or xorg in place instead of allowing the provided security updates to be installer [sic] makes it a vulnerable system… I personally wouldn’t do online banking with it ;)”.
Some of these allegations are completely untrue. It’s true that Linux Mint blocks updates for packages such as the X.org graphical server, Linux kernel, and bootloader by default. However, these updates are not “hacked out of Linux Mint,” as we’ll show later. Linux Mint also does not block updates to Firefox. Updates to the Firefox web browser are important for real-world security and are allowed by default, so this Ubuntu developer’s allegations are off-point. However, there’s still a real argument here — Linux Mint does block certain types of security updates by default.
Linux Mint’s Response
Linux Mint founder and lead developer Clement Lefebvre responded to these accusations with a blog post. In it, he points out that the Ubuntu developer was incorrect about the allegations we explained above. He also clarifies Linux Mint’s reason for excluding updates for certain packages by default:
“We explained in 2007 what the shortcomings were with the way Ubuntu recommends their users to blindly apply all available updates. We explained the problems associated with regressions and we implemented a solution we’re very happy with.”
Firefox is automatically updated by Linux Mint, just as is by Ubuntu. In fact, both distributions use the same package that comes from the same repository.
Linux Mint’s primary argument is that “blindly” updating packages like the X.org graphical server, bootloader, and Linux kernel can cause problems. Updates to these low-level packages can introduce bugs on some types of hardware, while the security problems they solve aren’t actually a problem for people who use Linux Mint casually at home. For example, many security flaws in the Linux kernel are “local privilege escalation” vulnerabilities. They might allow users with limited access to the computer to become the root user and gain complete access, but they can’t easily be exploited from a web browser like a typical security problem in Java could.
Is This Actually a Problem?
Both sides have good arguments. On the one hand, it’s absolutely true that Linux Mint is disabling security updates for certain packages by default. This leaves a Mint system with more known security vulnerabilities, which could theoretically be exploited.
On the other hand, it’s true that these security vulnerabilities aren’t actively exploited. Linux Mint does update software that’s under actual attack, like web browsers. It’s also true that updates to X.org have caused problems in the past. In 2006, an Ubuntu update broke the X server of many Ubuntu users that installed it, forcing them into the Linux terminal. Affected users had to repair their systems from the terminal. Linux Mint’s policy on updates was spelled out just a year later in 2007, so it’s likely this episode affected Linux Mint’s current stance.
If you’re a home desktop user, you probably won’t be compromised because of a flaw in the Linux kernel. Of course, if you run a server that’s exposed to the Internet or operate a business workstation you want to restrict access to, you should ensure all possible security updates are installed.
Controlling Security Updates in Linux Mint
Any Linux Mint user who’d rather have all the security updates Ubuntu users get can enable them from within Mint’s Update Manager. These updates aren’t “hacked out,” but are just disabled by default.
To control this setting, open the Update Manager application from your desktop environment’s menu. Click the Edit menu and select Preferences. You’ll then be able to choose the “levels” of packages you want to install. “Levels” are defined in the Mint update rules file we mentioned earlier. Levels 1-3 are enabled by default, while levels 4-5 are disabled by default. Firefox is a level 2 package, which is updated by default. X.org and the Linux kernel are levels 4 and 5, respectively, so they aren’t updated by default.
Enable levels 4 and 5 and you’ll get the same updates you would in Ubuntu — coming from Ubuntu’s own update repositories — but you’ll be more at risk of “regressions” that introduce problems.
The real disagreement here is a philosophical one. Ubuntu errs on the side of updating everything by default, eliminating all possible security vulnerabilities — even ones that are unlikely to be exploited on home user systems. Linux Mint errs on the side of excluding updates that could potentially cause problems.
Which solution you prefer will come down to what you’re using your computer for and how comfortable you are with the risks.
READ NEXT- › How to Score a Cheap Amazon Prime Subscription for Prime Day
- › How to Stream UFC Fight Night 155 de Randamie vs. Ladd Online
- › How to Speed Up Your Internet Connection
- › How to Add Alexa to Your Smart Mirror
- › How to Encrypt and Decrypt Files With GPG on Linux
Here is a question that is often asked in forums, on Reddit, and within chatrooms: Should I use Linux Mint or Ubuntu?
On the surface, there isn't much difference between Linux Mint and Ubuntu as Linux Mint is based on Ubuntu (except for Linux Mint Debian Edition) and apart from the desktop environment and default applications, there isn't really a difference.
In this article, we're going to list 5 reasons why you would choose Linux Mint over Ubuntu.
of 05
Cinnamon vs. Unity
Unity is the flagship desktop environment which is installed with Ubuntu. It isn't everybody's cup of tea though and you either love it or loathe it.
Cinnamon, on the other hand, is more traditional, much like the Windows desktop that many users have become accustomed to over the past 20 years.
Cinnamon is more customizable than Unity and provides the ability to have multiple panels, a selection of applets and desklets.
Ubuntu users would argue that you don't have to use Unity and there are other desktop environments available such as the Xubuntu desktop or Lubuntu desktop.
The same is true of Linux Mint. The difference between Linux Mint and Ubuntu with this regard is that you can install the XFCE version, the KDE version, the MATE version or the Cinnamon version and whilst the actual controls used might be different the overall look and feel remain consistent.
Installing the Xubuntu desktop or Lubuntu desktop provides a completely different look and feel because they are aimed at different audiences.
of 05
Linux Mint Is More Familiar for Windows Users
Linux Mint will feel instantly more familiar to Windows users than Ubuntu.
It doesn't matter which version of Linux Mint you install, there will be a single panel at the bottom with a menu, quick launch icons, and system tray icons in the bottom right.
Without any changes to the setup, the menus for all the applications also appear at the top of the application window. Ubuntu has this as a setting which you can toggle on and off.
Linux Mint and Ubuntu have very similar applications so it is hard to argue the merit of one set of applications over another.
For instance, Ubuntu has Rhythmbox installed as a media player whereas Linux Mint has Banshee. They are both very good applications and this requires an article in its own right.
Linux Mint comes with the VLC media player installed whereas Ubuntu comes with Totem.
Both of these applications are very good and arguing the merits of one over the other shouldn't be used to make your decision as to whether to use Mint or Ubuntu.
Applications can be installed via the graphical package managers that come with each distribution anyway.
The point though is that Linux Mint provides a desktop experience which Windows users will be used to and applications that will appeal to the average Windows user.
of 05
The Ability to Use Non-Free Codecs
Linux Mint comes with all the non-free codecs required to watch Flash videos and listen to MP3 audio pre-installed.
When you install Ubuntu for the first time there is an option during the installation which asks whether you want to install Fluendo and other third-party tools.
By selecting this option you will be able to play MP3 audio and flash videos. If you don't check this option you will need to install the Ubuntu-Restricted-Extras package to get the same functionality.
This is a minor point but it makes Linux Mint slightly more usable from the outset than Ubuntu.
of 05
Privacy and Advertising
Here is an excerpt which highlights the Ubuntu Privacy Policy:
Canonical collects personal information from you in a number of different ways. For example, when you download one of our products, receive services from us or use one of our websites (including www.canonical.com and
www.ubuntu.com).
So what sort of personal information is collected and who gets it?
When you enter a search term into the dash Ubuntu will search your Ubuntu computer and will record the search terms locally. Unless you have opted out (see the “Online Search” section below), we will also send your keystrokes as a search term to productsearch.ubuntu.com and selected third parties
There is a switch within Ubuntu that enables you to prevent this information from being collected but within Linux Mint you don't have to worry about this in the first place.
Does this mean you shouldn't trust Ubuntu? Of course, it doesn't. If you read the full privacy policy you can see what type of information is collected and how it is used.
Ubuntu also has a lot of advertising built into the desktop experience which means when you search for something you will receive links to items from the Amazon store.
In some ways, this is a good thing as it integrates your shopping experience into your desktop but for some of you, it will be extremely annoying. Some people just don't like to be bombarded with advertising.
of 05
Linux Mint Debian Edition and Rolling Release
One thing that puts people off Linux Mint is the fact that the upgrade path isn't always simple and that you will have to reinstall the entire operating system rather than upgrade.
This is only true of major releases. If you are going from Linux Mint 16 to 17 then you will have to reinstall but going from 17 to 17.1 provides a relatively easy upgrade path.
If the idea of upgrading and reinstalling puts a knot in your stomach then try Linux Mint Debian Edition. (LMDE)
LMDE is a rolling release distribution and therefore it remains constantly up to date without ever having to reinstall it.