I’ve been using Kali Linux with Pop Shell using i3 keyboard shortcut. I get all the benefits of a full Desktop Environment with all the efficiency of i3 tiling and shortcuts. Will update the article to reflect this.
Screenshots:
I’ve been using Kali Linux with Pop Shell using i3 keyboard shortcut. I get all the benefits of a full Desktop Environment with all the efficiency of i3 tiling and shortcuts. Will update the article to reflect this.
Screenshots:
I love linux mint. Its super clean and easy to install.
Kali is not a Linux distribution to use or to recommend as an operating system on bare metal. Except you are testing/learning penetration. Advice: Before hitting random download buttons on the net, at least read the description above those buttons. Kali description says “…penetration testing platform…” with a pretty LARGE font. So using Kali with a network connection, your data are exposed.
@Andrianos_Papamarkou @hydn i agree i dont like Kali linux and if you really want to go for the security tight linux with the sftp and everything defacto then go with the parrot os. https://www.parrotsec.org/ I havenot tried but build a docker for the simulation of the devops testing to estbalish a network swarm.
alles gut,
Gaurav
@Andrianos_Papamarkou welcome to the community. I don’t agree. Not at all.
Per Kali’s own website:
Kali Linux (is) Everywhere! | Kali Linux Blog - under the “daily driver” section. Quote:
Daily driver - Use the installer image and single boot Kali. With the docs and our forums you will be able to use Kali daily just fine with no worries. Be sure to follow the barebones install method!
…this is unfortunately misinformation. If you install Kali without pen test tools, you enjoy a stable and secure rolling Debian based distro, as I (and MANY others) have for many years. I LOVE Arch Linux, but personally, I do prefer rolling + Debian based = Kali without pen test tools.
Again from Kali Linux FAQ on their website:
Kali is the best penetration testing platform. By default is open, not secure. It is a nice VM toy for hackers.
@Andrianos_Papamarkou thank you and my field of interest and working is not penetration testing and hacking, so i dont have any idea about the same. Thank you for giving this knowledge share.
Did you read this? This answare actually say that you must install kali in a certain way and then heavilly tweak the distro to make it safe following 4 tutorials. That doubles that Kali IS NOT a regular distro but “the best penetration testing platform” as the official description say. This answer does NOT recommend kali for daily use. It clearly says that it could be done with some conditions.
I could add to this FAQ answer to un-block some security updates.
This distro should not be recommended to regular linux users as a bare metal operating system that handles personal data. This answer clarifies that Kali It is not safe for this.
@Andrianos_Papamarkou, You mentioned Kali is only for “testing/learning penetration” and that “using Kali with a network connection, your data are exposed,” suggesting it’s “not safe” for regular use. While I appreciate your perspective, it’s important to correct these misconceptions.
“testing/learning penetration”: While Kali is designed for penetration testing, it’s not limited to that use. The flexibility of many Linux distributions, including Kali, allows them to be adapted for various purposes. Kali, when installed correctly, becomes a more typical Debian-based distro, suitable for daily use. For example, Arch Linux, Gentoo, Slack, and other similar distros geared towards knowledgeable users require a bit more configuration and customization. That’s the beauty of Linux!
“using Kali with a network connection, your data are exposed”: The assertion that using Kali with a network connection exposes your data is misleading. Like any Linux distribution, Kali’s security depends on how it’s configured. Period. It’s about user proficiency and system configuration, not inherent flaws in Kali. As per your advice about reading, that’s key for anyone who wants to use Kali (and other distro) securely.
“Kali It is not safe for this”: Saying Kali is not safe for regular use overlooks the skills of Linux users who look into the many non-beginner distros such as Kali, Arch, Gentoo, Slackware, etc. Which is why it was correctly placed under the adv/expert subheading in the article.
The requirement for tweaks and customizations is common and welcomed in the Linux world, and doesn’t make Kali unsafe for personal data handling in any way. As such, for many, Kali is a secure and stable general and everyday system, and for likely most, it’s used exclusively or mainly for pentesting.
You’re basically doubling down on my words. We agree that Kali by default is not configured to be a secure system for bare metal handling of your personal data. It requires a lot of modifications and security management skills (to test those modifications) to comply with this specification.
I never said that an experienced security system administrator can’t turn Kali into a daily driver. I said that Kali (as is) is a distro set up as a penetration testing platform as the Kali developers describe on the official front page above the download button.
I also said that it should not be recommended as a normal operating system like Debian, RedHat, SE, Arch, Slackware, Solus, Mageia, etc. It can be disastrous for users who don’t fully understand the difference between a “Testing Platform” and an “Operating System”.
I agree that you have backtracked a bit and cleaned up the blanket false statements about Kali. Sorry, but I’m very fond of this distro and passionate about using and supporting it; so I don’t like to see the false narrative to scare others away from using it wisely.
Other than your follow-up messages which, yes, you try to agree with me. I still disagree with the original blanket statements:
No. Disagree.
Disagree. “Kali’s security depends on how it’s configured. Period.”
Again, I’ll refer you to more informed narrative and discussion around the web:
Quote:
" The bare metal installer exists for a reason, and I do believe that there are people who can benefit from using Kali as a "daily driver “. I think that more people need to at least acknowledge these things before giving advice to people, and also maybe tone it down with the elitism sometimes.”
We can agree on that. And agree on encouraging users to read direct from kali.org/faq/ and then decide for themselves and not just take the advice of others, including me. Which is why I shared such links above to more reading.
It’s the message, not the messenger. A lot of us Kali users are a bit sensitive to that “opening message”:
The official documentation does not recommend it (“not” is bold and capital) for general-purpose use as it is challenging even for experienced users. But I guess you know better.
I prefer to paste for context:
The fact of the matter is, however, that Kali is a Linux distribution specifically geared towards professional penetration testers and security specialists, and given its unique nature, it is NOT a recommended distribution if you’re unfamiliar with Linux or are looking for a general-purpose Linux desktop distribution for development, web design, gaming, etc.
None of which align with your opening post. You have since acknowledged that it cannot be blanket advice. But now again in your latest post, reverting to your original point of view. Albeit not the context of the entire paragraph:
Or the other places where answers/advice is provided:
No, I do not know better, I only follow the advice of Kali Linux and thus why it’s listed under the: “Best Linux Distros for Experts” subheading.
My opening post point this:
Kali is not a Linux distribution to use or to recommend as an operating system on bare metal. Except you are testing/learning penetration.
I actually don’t disagree with you that a modified Kali can be used as regular OS (though it is not designed for that).
My exact “point” is on the image below:
Actually, since Kali changed to a non-root install by default a few years ago it makes it much easier to use default and simply uncheck the pen test tools during the install wizard.
A lot of the scaremongering still remains from when Kali defaulted to root-only install. Back then, a few years back, the default install was potentially dangerous for users who were not aware of the dangers of running Linux in root.
The screenshot you posted above shows all Linux distributions. I also already posted a link to Kali’s official explanation of their relationship with Debian Linux.
No matter what Linux distro we use modifications are necessary, especially the more advanced distros. While some may see this as a downside, its should really be seen as the beauty of Linux ecosystem, and why distros like Kali and others are empowering.
This is why just as Kali’s own FAQ states it should be used, I will continue to recommend for bare metal and non pentest uses under that “expert” subheading of recommendations.
Reference:
I would not recommend any debian based distro in 2024 because :
APT is very slow & less active development
Using old unmaintained packages
broken by design
What i would recommend :
Arch Linux - Fast, minimal, never break (if power user)
Fedora - has many spins that suit your needs, powerful package manager, big cooperate & community support, Latest technology always used in fedora (uptodate) work for beginners and experience users
opensuse - Well maintained distro as fedora
For me Arch is best distro
for beginners i’d recommend fedora linux
I understand your perspective on Debian, and it’s true that each distro has its own strengths. While Debian’s APT might seem slow compared to others, it’s known for its stability and extensive testing, which some users prioritize.
APT speed can often improve by selecting a mirror closer to your location or less congested.
It’s great that you’ve found Arch Linux to work well for your needs, especially for its cutting-edge nature and speed.
Fedora and openSUSE are indeed solid choices too, each with their unique features and strong community support. It’s all about finding the right fit for your requirements and comfort level.
Thanks for sharing your insights!
LOL will someone think of the STIGMA! LOL
This summary of distros is also very useful: