Linux is not really comparable like this because the distribution matters along with the bootloader configuration.
If you have an immutable distro with SELinux configured and your own UEFI keys or a shim with secure boot, you’ll have a very different set of vulnerabilities from someone running Mint with secure boot turned off.
For a short time Microsoft marketed an upgrade path the a full Unix like operating system for Windows. It was widely known that some of the Windows shell differences from Unix were just arbitrary aliases for the Unix commands.
If you ever get the chance, try using an old Android device you do not use, enable the developer options for the ADB bridge and try hacking around, if you have an interest in understanding how Linux security works in practice when it is done right. The Linux side of Android is an interesting case study if you understand the premises of Android. It is a Linux system that is secure for people with absolutely no understanding of Linux or networking. This is enabled by allowing the app developer to become something like a full Linux user on the Android device. All of the Linux kernel binaries that could modify the kernel in any way are removed and there is no administrative account present. When the hardware manufacturer logs out for the last time, all the administrative and modifying binaries are deleted. This secures the remaining files that are all marked as read only. Android also has a very robust SELinux implementation in place. Every location present has a defined security context. So there are places where you can create temp files and store data, but the things that can be added and manipulated are very limited in their access to other parts of the system. If you mess around with this the way these tools work will become much more tangible.
By comparison, most distros ship with a very open and unconfigured security context. The SELinux configuration is still extremely permissive in distros with SELinix integrated, like Fedora. This is nothing like Android’s setup. The primary reason for a lot of the ROM community on Android and how they have root access is because of exploiting CVE vulnerabilities in the kernel that were found after the kernel was shipped. Android works with orphan kernels that only the manufacturer can update because they retain the source code for the kernel modules that they add at the last minute. This is the depreciation mechanism used by the hardware manufacturer to steal ownership with Android devices.
If you understand how exploiting CVE’s works on a simple abstract level, and why it is necessary in order to bypass the immutable system (read only file system without tools to modify Linux kernel binaries), and how SELinux adds further restrictions based on the context of who is accessing the directory or command/executable, you should better understand the complexity of the question you’re asking. The app developer on Android is like your equal on the device. They can do what you can do, and that is why you are so restricted too. Your measures of control on Android are very limited and just in the app environment spaces.
Once I learned the basics of this system, it has become the way I view all software systems intended to enable ignorant consumers. Tremendous power to alter systems is included in these platforms, platforms like Windows.
Those that are trying to make the Windows games work on Linux are likely completely focused on functionality. When people talk about things like sandboxing, they are almost always talking about library dependencies and not any kind of security context. It is likely that any malware that targets Windows binaries will not work on Linux directly, but something that targets Linux specifically is another matter entirely; it is security through obscurity, which means no security at all. Unless you’ve taken active measures to limit the PID/GID/security context of the process that is running the software, it has all the same permissions of the user that called it. It can delete, view, and write anywhere that you can with the user/group/sc that launched it.
Try not to think like this. Over the last 10 years, between reddit in the past, and here now, I’ve had to use these places as my only external form of human social contact because of disability issues. I’ve noticed certain patterns emerge with the seasons. These places are largely dominated by certain regions of the world. When those regions go through seasons where the majority of people are doing things elsewhere, the comment and interaction quality decline noticeably. I’ve learned to not take it personally and I turn to other outlets to spend more of my time. This is when I do most of my gaming and reading. I’ve finished all of the primary Dune series and most of Asimov’s main series from Robots through Galactic and Foundation. Most recently, someone suggested the FOSS game Cataclysm Darker Days Ahead. While the theme is absolutely counterproductive for me, the game’s complexity and particularly the documentation of the source code and mods is absolutely fascinating to me. I’ve been exploring JSON tools when it comes to stuff with AI, and the game is like a guided masters class in functional use and tools that use JSON.
Many people seem to think I’m an asshole or a “bad person” but most simply can’t understand my needs and interests. I never knew what disability was really like and its challenges prior to the day I got hit by a car. I probably had a stupid attitude and said stupid things that made people feel bad in my exact position now. I can’t blame others for their ignorance when condemning them is condemning myself.
Personalities and functional thought are far more varied in humans than most of us realize in practice. I’ve explored this a whole lot over the last year with AI where it can simulate other contrasting perspectives in very complex ways while answering some really complex questions with relevant sources to back them up. This kind of personality analysis is a major aspect of what LLM’s are designed to understand. The more I’ve explored this topic, the more I have come to realize the binary approach to anything like a good and bad label for a human is completely inadequate. The cause and effect have no simple connections. Most of a person’s “bad” behavior is likely related to cognitive dissonance. If you look up what that really means, it is due to some level of conflict in a person’s life that they are unable to address or have limited/emerging self awareness. If you are noticing such behavior that could be related to cognitive dissonance, work to address the probable causes of underlying conflict in your life if you’d like to address the issue.
My personal primary conflict is social isolation. That is what I am here to address. I don’t use corporate social media because I’m an outlier of their marketing and exploitation designs where they are unable to accommodate my needs. The inconsistencies of this place are not healthy for me, and it can have a very real impact on my life, but over time I’ve tried to pick up on the patterns and withdraw when I need to do so. Anything that shakes up or makes me question the underlying stability of a place like this is the most deeply disturbing to me. I’m also aware that there is a substantial misdirection campaign that happens with all major elections now. Anyone posting or commenting on such subjects are highly suspect to me. I look at their account activities and ignore or block them if they do not show a wide spectrum of activity and complexity. One day it will become public knowledge that conservative asshats have no morality whatsoever, never have, and are paying thousands of people to post, comment, and write bots to maintain their criminal activities and control. Their presence is completely disproportionate to the population and interests the government represents. When those subhuman jackasses could no longer enslave people outright, they simply shift their focus to redefine slavery to put everyone in their chains. Anyone commenting some shitty nonsense with an account that has little history or a lot of history with no depth is some unethical criminal being paid to do so, is not worth my time or thought, and is absolutely the reason I was right in the first place. Look up the Plutonic definition of sophism and keep in mind that there are some people with a love for their own sadism. These places online are full of people that can be fucked with and there are many that love to take advantage of those that are here for their real human needs. Do not hesitate to disregard anyone that evokes a negative emotion to a well intended comment.