In short, no not really for modern windows versions, in almost all cases.
Although I don’t find “well Windows does it so it must be alright” to be a great argument anyway. When someone says “top notch security”, Windows isn’t the first thing that springs to my mind.
It usually does, but it doesn’t have to.
Hypothetically yes, but in every single distro out there that I’ve seen no. And most people don’t build their own from scratch.
And the new thing to replace that is still not good enough after 10 years or so.
Not in all cases, no. There are fringe usecases still being worked on. I’ve been using it since 2016 just fine, but my sister, who is reliant on screen readers, hasn’t been able to.
Like I said, things are being worked on. This is kind of derailing the conversation away from security, though. I was talking about security.
Let’s please not extrapolate the problems of your distribution to all of them.
No. It is all of them. It’s a problem with all Debian-based distros, Fedora, SUSE, Arch, you name it. Installer scripts run with root privileges.
Your user may set aliases for the shell of your user, and the program\script ran by your user can do that.
Yes… then when you run sudo thinking you’re using whatever command, it can run something entirely different. How don’t you see that as a problem?
It’s not a security hole at all.
WHAT?! Any program, without root privileges, being able to tamper with what commands do, and gain full root access to your system, “is not a security hole at all”??
So you download, say, a text editor. Except it’s been compromised (although you don’t know it). That program alters the sudo command by aliasing it to execute a curl command that encrypts your drive and shows a message that if you send ABC amount of bitcoin to XYZ wallet, then you get the decryption key.
You run sudo for any reason, e.g. to edit your fstab file, do a system update, install a package, anything, and you type your password at the prompt as usual. Unbeknownst to you, you didn’t actually just run sudo plus your intended command, you just ran that aforementioned curl script, and you handed it sudo privileges. Your SSD is encrypted, your data is gone.
In your mind, that’s not a security hole? That’s intended behaviour? Any program should be able to do that?
I don’t really know what to say to that, other than I disagree wholeheartedly.