[l24ztj]

No, they are not the same thing in their USE, which is exactly the point I'm making.

I trust nginx, sshd, postgres, postfix, etc. much more than I trust the gnome file manager, evince, dbus, pulse.

For every exploit that nginx currently has, there probably are a thousand lurking in gnome's file roller.

[SmellyGeekBoy]

But Gnome runs as the currently logged in user, right? So the worst damage it can do would be to files that that user has write permissions on (ie, not system files).

Unless your entirely hypothetical scenario involves privilege escalation vulnerabilities, which I'll admit aren't unheard of in Linux but are fairly rare and usually patched within hours when they are discovered.

[daeken]

This is the case with the vast majority of Windows malware as well. System files aren't important; sure, you need them to run the system, but it's not like you can't reinstall. The issue is damage to user-owned files, no matter which OS you're talking about.

[saalweachter]

Don't spit into the wind, don't tug on Superman's cape, don't rely on no LEP existing.

[l24ztj]

Once again, we're talking about DESKTOP Linux here.

https://xkcd.com/1200/