[p_ing]

> Their's a really good argument for having a "gaming" os, Windows, and a serious OS , Linux on the same computer.

This is a terrible idea if you think this will keep you secure. Windows provides direct access to update motherboard firmware and CPU microcode/management engine.

[999900000999]

Is most malware literally going to embed itself in the BIOS and install itself on Linux ?

Seems like an insanely difficult thing to do to target like .5% of users.

[p_ing]

Hot off the presses:

https://github.com/google/security-research/security/advisor...

[sim7c00]

dònt need to jump into bios/uefi, but a) secureboot is often off, so uefi app or driver will do.. its not hard. theres ways around sb too if needed. b) ppl dont use FDE or use a broken one. so u can just mount the disk of the other os.. c) can find a lot of other places to hop between oses on a system which have glaring holes.

[sim7c00]

hah yeah ,dont run insecure os nexto secure one :D. good point!

[p_ing]

Linux distros can also update firmware and microcode.

[sim7c00]

saw the latest m microcode update debacle. rip my ryzen cpu hah :')

u can allow linux to do it, u can also not allow it.. depends on what u allow really :'). tho, ofc vuls exist and ppl might yet find a way. also u can edit ur kernel etc. to stop certain features. disalow kmods being loaded etc. etc. its not as easy to find holes on a properly configured system as windows. tho its quite hard to do a proper config especially if u want to do gaming and want wine to run etc.