Possibly…but I think some of that depends too on what is meant by “online.” Obviously, if you frequent questionable sites and install unvetted software, that’s a bad idea. OTOH, having a machine with strict firewall rules (so not everything can just phone home), limited outbound access, no daily browsing/email, and only going online occasionally for specific, known downloads is a different situation than using it as a general-purpose internet PC.
Even occasional access to a small number of mainstream, HTTPS-authenticated sites (e.g., major services where the browser can verify certificates) isn’t the same exposure as wide-open browsing. (nb: Firefox’s ESR releases have historically helped extend browser security support on older systems for a while, which can reduce risk somewhat - though obviously not indefinitely.)
Look, I’m not arguing that EOL systems are “safe.” They’re not getting patches. But exposure matters. A mostly appliance-like gaming box that’s segmented and tightly controlled isn’t the same risk profile as someone’s primary web machine.
Possibly…but I think some of that depends too on what is meant by “online.” Obviously, if you frequent questionable sites and install unvetted software, that’s a bad idea. OTOH, having a machine with strict firewall rules (so not everything can just phone home), limited outbound access, no daily browsing/email, and only going online occasionally for specific, known downloads is a different situation than using it as a general-purpose internet PC.
Even occasional access to a small number of mainstream, HTTPS-authenticated sites (e.g., major services where the browser can verify certificates) isn’t the same exposure as wide-open browsing. (nb: Firefox’s ESR releases have historically helped extend browser security support on older systems for a while, which can reduce risk somewhat - though obviously not indefinitely.)
Look, I’m not arguing that EOL systems are “safe.” They’re not getting patches. But exposure matters. A mostly appliance-like gaming box that’s segmented and tightly controlled isn’t the same risk profile as someone’s primary web machine.
ICBW and YMMV.