Cross-posted to: https://sh.itjust.works/post/15859195
From other conversations that I’ve read through, people usually say “Yes, because it’s easy on Windows”, or “Yes, because they simply don’t trust the webcam”. But neither of these arguments are enough for me. The former I feel is irrelevent when one is talking about Linux, and the latter is just doing something for the sake of doing it which is not exactly a rational argument.
Specifically for Linux (although, I suppose this partially also depends on the distro, and, of course, vulnerabilites in whatever software that you might be using), how vulnerable is the device to having its webcam exploited? If you trust the software that you have running on your computer, and you utilize firewalls (application layer, network layer, etc.), you should be resistant to such types of exploits, no? A parallel question would also be: How vulnerable is a Linux device if you don’t take extra precautions like firewalls.
If this is the case, what makes Windows so much more vulnerable?
I do, for three reasons:
- Hackers. It’s unlikely that anyone would hack my webcam, but there’s always a chance. Maybe I’m paranoid, idk.
- Hardware exploits. Three of my laptops are too old for me to update the firmware with
fwupd
, so I cover the webcams in case there’s some critical hardware-level vulnerability which could be exploited; or in case one of the three-letter agencies are in there. - Consequences. Despite the incredibly low chances of anything happening whatsoever, the possible consequences are too bad for me to want to risk it.
I’m paranoid, aren’t I…
And for me: 4. It makes it a lot harder to accidently turn my camera on in meetings (a different form of privacy)
Also, it’s incredibly low effort to cover it. There’s no subscription plan for covering a webcam.
Is it unnecessary to cover one’s webcam on Linux?
No. Please cover your webcam.
how vulnerable is the device to having its webcam exploited?
Every bit as much as Windows minus their proprietary spyware.
How vulnerable is a Linux device if you don’t take extra precautions like firewalls.
Depends on what links you like to click.
what makes Windows so much more vulnerable?
Fewer eyes on the source code. Effort to reward ratio, the 80-20 rule. 20% of the effort nets your 80% of the reward. Literally. Develop exploits for one platform, target 80% of average computer users. Or write exploits for hundreds of different distros for *checks notes* … 4%. Unless you like servers. There there’s a coin toss. 50% linux, 50% Windows.
Keep yourself safe, there’s malware for Gnu-Linux too. Install your patches when you can. Remove software you don’t use. Practice good cyber hygiene.
It’s better to be proactive than being reactive. Take preventive measures that fit your threat model.
I never really understood the obsession to cover cameras. While yes you don’t want someone to hack it and yes I do cover mine. What are they going to do? Watch you fap? I really don’t care. I personally am much more concerned with the mic. I would hate for someone to record me saying something well not so pleasant. You can use your imagination. I rarely see people mention the mic. I see it mentioned a few times here but not much. I much rather have a kill switch for my mic.
So sending a video of you fapping to your employer and family isn’t a problem? It still wouldn’t be a problem if you were a teenager or a young adult at the beginning of their career?