operating systems – How should GNU/Linux noobs harden their dekstop OS?

I’m interested in using GNU/Linux for different reasons. Partly for freedom, privacy, and security. But also to force myself to learn Linux. One issue I’ve found is that desktop Linux seems to have fairly poor security by default which is a little odd considering GNU/Linux is often recommended by security experts in certain circumstances. I looked into hardening Linux but that guide is clearly for very advanced users who have a lot of time on their hands. My threat model is sort of mixed. I’m not a highly targeted individual, but I also plan to do sensitive work with investigations and activism so security is still very important to me. I’m hoping to do everything on one laptop for monetary and practical reasons, so I want to avoid using a burner for my more sensitive work if possible. I’ve also looked into Qubes, but much like the previously mentioned hardened Linux guide, it looks like it is more for advanced users and it comes with a lot of usability issues.

Are there any simpler Linux hardening guides that still address many of the presented Linux security concerns? Or better yet a way to automate the “hardening” process? If it matters, I think I’m most comfortable using Linux Mint Cinnamon since that’s what I’ve used for some time, but I’m open to using anything that’s easy and just works out of the box with little to no configuration necessary.

operating systems – Are i/o device polling intervals often consistent?

this is a quick question about common existing operating systems.

Is a polled io device (say of 120hz or 250hz) generally getting polled at a fixed rate or there are usually considerable fluctuations in polling intervals, and if there are fluctuations, are they in terms of milliseconds or micro/nanoseconds?

operating systems – What are joinable, joined, detached modes of threads?

In posix library, if we create a thread in main function, then it is in joinable state.

  1. What are this 3 modes, joinable, joined, detached?
  2. Is it recommended to use pthread_join or pthread_detach?
  3. What if the thread is not joined or detached? How the resources are deallocated in this mode?
  4. What happens if pthread_exit is called from main thread for each of 3 modes?

By joinable, i mean that without using pthread_join or pthread_detach i.e. default mode after creating thread.

  1. Why pthread_join is named like this, why not simply pthread_wait?

Consider linux implementation of threads.

adb – operating system – Android Enthusiasts Stack Exchange


Your privacy


By clicking “Accept all cookies”, you agree Stack Exchange can store cookies on your device and disclose information in accordance with our Cookie Policy.




video – Camera for use in Submerged Water tank Operating at 90 Degrees Centigrade

video – Camera for use in Submerged Water tank Operating at 90 Degrees Centigrade – Photography Stack Exchange

How do we isolate the operating system from accessing the IPMI interfaces on Supermicro MBI-6219G-T blade servers?

We have managed Supermicro servers in the past which have independent IPMI/BMC network interfaces. These IPMI interfaces are all connected to separate VLANS. With those servers the operating system has no connectivity to the IPMI/BMC interface, and we were never able to connect to devices on the management/IPMI VLAN, which is to be expected behavior.

Now we are deploying a pilot project with Supermicro MicroBlade servers on 628E enclosures and to our surprise the Operating System is able to connect/PING any other device connected on the IPMI/BMC LAN. This would allow any client access to a sensitive and restricted LAN.

The Supermicro MBI-6219G-T blades have access to all IP hosts connected on the IPMI VLAN. We can PING all hosts from the Operating System. Even though LAN1 and LAN2 interfaces are connected to a different subnet/VLAN. How can the OS have access to the IPMI interface? This is a serious security vulnerability for our public cloud hosting service provider environment.

According to this document from Supermicro, our understanding is that the IPMI interfaces are connected to the Management Module (MBM-CMM-001) Switch (SW) which is isolated from the LAN1 and LAN2 interfaces connected to the separate switch modules on the chassis (MBM-GEM-001). Per this phisical separation there should be no access to the IPMI from the OS. This is the first time we see this, and we work with hundreds of Supermicro servers.

These blades are connected to the following management module:

Model: MBM-CMM-001

CMM Firmware Revision : 03.61

Mgmt Switch FW Revision : 02.03

LAN1 and LAN2 interfaces are connected to the Switch Module:

Model: MBM-GEM-001

FW: PG1_1.0.1-12

Any assistance will be greatly appreciated.

Thank you,

os – Which operating systems are available for smartphones with x86 or x86_64 architecture, such as the ASUS Zenfone?

Those smartphones built with Intel processors (such as: various versions of the ASUS Zenfone; Lenovo P90; Lenovo K80; ZTE Geek V975) were shipped with Android compiled for Intel architecture. Which alternative, in the best case open source operating systems are available, that can run on Intel smartphones?

The Android x86 distribution, for example, only runs on PCs, not on smartphones. As far as I can tell, LineageOS is the only system for which installation instructions for Intel smartphones are available.

operating system – Computer Science Stack Exchange

operating system – Computer Science Stack Exchange

operating systems – concurrency in multiple core

Concurrency is not parallelism: indeed, concurrency refers to the sharing of resources in the same time frame. As an example, several processes may share the same CPU or share memory or an I/O device.

Two processes (or threads) can be defined concurrent if an only if the second process starts execution before the first has terminated (assuming that the execution happens on the same core of a multi-core CPU).

Therefore, if the two processes both run on the same core of a multi-core CPU the processes are concurrent but not parallel: in this case, parallelism is only virtual and refers to the OS doing timesharing. The OS seems to be executing several processes simultaneously. But, since the processes execute on the same core, only one instruction from one process can be executing at any particular time. Since the human time scale is billions of times slower than that of modern computers, the OS can rapidly switch between processes to give the appearance of several processes executing at the same time.

If you instead run the two processes on two different CPUS, the processes are parallel: there is no sharing in the same time frame, because each process runs on its own CPU. The parallelism in this case is not virtual but physical.

Finally, it is worth noting here that two processes running on different cores of the same multi-core CPU can not be classified as fully parallel, because the processes share the same CPU caches and will even contend for them.

It should now be clear that performance-wise, parallelism is better than concurrency.

operating systems – How do you work out the segmentation table, offset and frame size in segmented memory management?

If I had a process, 1, which has the following segments:

Segment 1 – 50 bytes

Segment 2 – 200 bytes

Segment 3 – 90 bytes

and I know that the total bytes in memory is 1024, how do I work out the offset/base/limit and the frame size for each segment that needs to be placed in physical memory?

Thank you for the help in advance.

DreamProxies - Cheapest USA Elite Private Proxies 100 Private Proxies 200 Private Proxies 400 Private Proxies 1000 Private Proxies 2000 Private Proxies ExtraProxies.com - Buy Cheap Private Proxies Buy 50 Private Proxies Buy 100 Private Proxies Buy 200 Private Proxies Buy 500 Private Proxies Buy 1000 Private Proxies Buy 2000 Private Proxies ProxiesLive Proxies-free.com New Proxy Lists Every Day Proxies123