secure-os.org
All guidesQubes OSTailsWhonixHardened LinuxDisk encryptionThreat model
A code editor window on a screen lit by warm light

secure-os wrote

Wayland vs X11: Which Is More Secure? (2026)

Jul 9, 2026 in linux, wayland, x11 - X11 lets any running app read your keystrokes and capture other windows. Wayland was designed to close that gap. What each does, the honest caveats (XWayland, portals), and why a security desktop should prefer Wayland.

Read more…
📅 4 min read🛡️ Threat-model-first

secure-os wrote

Do You Need Antivirus on Linux? An Honest 2026 Guide

Jun 26, 2026 in linux, antivirus, malware - Does Linux need antivirus? The honest answer, when it actually matters (servers, mail gateways, mixed Windows networks), the real tools - ClamAV, rkhunter, chkrootkit - and the layered defenses that protect a desktop better than a virus scanner.

Read more…
📅 8 min read🛡️ Threat-model-first

secure-os wrote

Firejail: How to Sandbox Linux Applications (2026 Guide)

Jun 25, 2026 in linux, sandboxing, firejail - A practical guide to Firejail, the SUID sandbox that confines Linux applications using namespaces and seccomp. Covers installation, profiles, common commands, real limitations, and how it compares to Flatpak and Bubblewrap.

Read more…
📅 8 min read🛡️ Threat-model-first

Operating systems

Qubes, Tails & Whonix

Which secure OS fits which threat model - compartmentalisation vs amnesic vs Tor-routed.

Read the guides →

Encryption

Full disk encryption

LUKS, BitLocker, FileVault and VeraCrypt - what each protects, and what it does not.

Read the guide →

Hardening

Threat-model-first Linux

Practical hardening built around the adversary you actually face.

Read the guide →