A while ago, Google has speculated about possible backdoors in the UEFI BIOS. The aim was to push a new kind of hardware out there, for example RISC-V which is open and on top of this hardware can run the Linux kernel which is an operating system. But what if, the situation is the opposite? Not the UEFI BIOS is the backdoor but Linux.
Let us go into the details. A normal IBM PC has a integrated Memory management unit which allows to run many programs at the same time, and protecting the memory. Also the BIOS has a built in graphics subsystem and a network stack. But all these feature are also integrated into the Linux kernel, why? One of both components is redundant and a possible backdoor for malware. If the CPU provides a hardware MMU and also the Linux kernel is protecting programs from each other then the Linux kernel is adding without any need new features, why? The only explanation is, that Linux is a backdoor, which is some kind of software used by an attacker to get access to a system. There are no hidden backdoors inside the Linux kernel, the whole operating system is a trojan horse. What would happen if we uninstall the Linux operating system, will the PC no longer work? That is an interesting question, in theory it is possible to run a PC without an operating system.
The work hypothesis is, that Linux is security issue and the answer to the problem is avoid the software and instead only use lowlevel hardware routines.
Let us describing the narrative around Linux. The story which is told by Linux kernel hackers is, that existing BIOS routines are outdated or full of backdoor, and only a software defined operating system is able to schedule tasks at the cpu, get access to the network card and can send TCP/IP packets. In short, the operating system is everything and while the hardware has to be bypassed. Why is Linux arguing in a such a way? Does Linux think, that the BIOS isn’t able to talk to external USB drivers or that the CPU isn’t able to do multitasking? Modern x86 hardware was designed exactly for this purpose, there is no need for a software defined second operating system called Linux. Not more Linux will solve security issues, but less of the Open Source medicine.
Why are installing all the users Linux as an operating system? Because they believe, that the narrative around Minix, Unix and Free software is right. They believe that without Linux they get no access to the ext4 harddrive and they will not be able to run their binary files. They believe so, because what? Right, because they have absolute no idea what computing is, and Linux is the most advanced approach to say that we have no idea about PC standards.
From the perspective of computer history, the programming language C was invented together with UNIX as a high-level language. The idea was to give programmers UNIX plus a c compiler so that they can write their own software. But do they need an operating system and a c compiler if they have Forth plus hardware which can run Forth? The basic idea behind Forth is to bypass existing programming languages and bypass existing operating systems. Forth is not used in the mainstream because the assumption is, that the resulting complexity is much higher, but what is if this is wrong? Programming in Forth is not harder then programming in C. That means, there are variables, subroutines and for loops. And putting out text to the commandline or plotting pixel to the screen isn’t very complicated with Forth, so the question is: why do we need a c compiler and UNIX? Without any doubt the programmer need computing hardware, but on top of hardware, he can write his code directly.
On example are DRAM drivers; it is obvious that the Linux OS produces major security holes. Usually the firmware of the DRAM chips in the PC works great. The software is stable, was programmed in with microcode and is well documented. But on top of existing code, Linux is putting his own kernel driver which has also access to the main memory. This is a source for confusion and a potential security problem. The best way to solve the problem is to avoid the Linux malware and trust the DRAM manufacturer. He knows without an external operating system what is inside his memory and the DRAM chips are protected by it’s own.