Steam comes preinstalled and configured on Bazzite, it isnt the flatpak version.

Is the rebase feature the main thing that sets atomic desktops apart?

Atomic and immutable distros essentially attempt to make each version on every computer act exactly the same to help devs with debugging. This means they shut down a lot of easy access to core system files, instead you have to use special commands to layer new changes onto your distro. These are automatically re-applied every time you upgrade, reducing the chance of breakage.

Rebasing is a fun consequence of this. Fedora Atomic images (re: things like Bazzite, Secureblue, Kinoite, etc) can be swapped out with a simple command or two. If a dev does something you don’t like, you can easily swap to a different image without having to do a full migration.

I’m not too worried about having to troubleshoot. Nobara has been appealing to me because it’s developed by the Proton guy.

Most of the kernel mods from nobara are applied on Bazzite. Bazzite and CachyOS afaik contribute to the same set of code there.

How does an atomic distro help teach containerization and data security as compared to a traditional distro?

Since you cannot easily modify system files, you need to use containers to make certain very technical (and often insecure) things work. DistroBox is the main method for this, and as a plus side, it lets you install programs with commands from any distro. I can use the AUR (an arch linux feature) on Bazzite (Fedora atomic) with DistroBox if i want, for example. There are some other things that come preinstalled on Bazzite that help with this, such as flathub and brew.sh

Bazzite has the latest KDE, yeah, currently reading 6.4 on the latest version. Nobara broke on upgrades for me (I did nothing crazy, basic install and basic upgrade process), bazzite is rock solid and built on a good base (fedora atomic). In general, I fully recommend immutable atomic distros for noobies it all just works and it helps teach you important lessons on data security and containerization

The best thing about atomic linux images like Bazzite is if for whatever reason Bazzite stops releasing new versions you can rebase to a different “distro” and itll have all of your user data and configs intact with a single simple command. With things like Nobara or Garuda, if there is a problem you essentially have to do a clean install.

edit:

And as for Arch, Linux mint, etc., I personally find these distros and advice to be outdated. Upgrades can often break in many smaller linux distros and it is very important to have a strong and reproducible method of upgrading, especially for new users. VanillaOS and Fedora Atomic are currently the most user friendly ways to achieve flawless upgrades.

A lot of the info here reads as outdated to me, I have a 40 series card and on bazzite with open drivers it works with zero issues on major titles like Cyberpunk, Horizon, etc. The open drivers have come a long way. It took maybe 5 months post 40 series release for it to work 100% with no glaring issues for me, but 40 series was also the first cards to be launched with the open drivers so it makes sense there’d be hiccups

The only issues I’ve had on Wayland are color related.

Guys like this always go to bat for pedophiles, wonder what he says about queer people.

Np! Glad you enjoy it! Its made by KDE themselves. You might like Bazzite w/ KDE or Aurora. Generally, I feel ublue adds a lot to atomic distros in terms of automation and nice to have features

If I’m trying to look up how to do terminal stuff to install something not on flatpak, 99% of the time the instructions are for regular Fedora, not Silverblue.

This is solved by the various ublue images and distrobox generally. Distrobox basically lets you run those install instructions as natively as possible. Its a bit like WINE but for all linux distros. For example, I can install a .deb file to my system with distrobox, or I could pull from Arch’s AUR. Distrobox lets you be pretty lazy, it works most of the time, though some applications don’t seem to like it. And by the way, you can download a .rpm file and layer it using rpm-ostree install [.rpm filelocation] if all else fails.

Generally, I feel like Fedora Atomic is the best middleground for linux these days. It really incentivizes the users to use containers, which are far more secure than the permissions anarchy of normal linux. Its easy enough to daily drive too.

What feature does ShareX provide that Spectacle doesnt? You can share to imgur, telegram, etc with it.

I’ve actually tested doing addons to the browser and keeping permanence, and I found it good for my use cases and my specific add-ons (add-ons that do not access DOM). Most major sites don’t have the tech to actually fingerprint it that way. Yes, it does harm the potential fingerprinting, but if you are careful and make it so that private browsing mode basically resets it to default, you can turn it on when you need to. The biggest issue is turning cookies on imo.

Of course, only do this if you know what you’re doing, know your requirements, and know the ins and outs of how fingerprinting on particular sites work. Its perfectly reasonable to main mullvad browser with its baseline setup.

Yeah Mull is a different project. Mullvad browser is better than Mull (now Ironfox) tho lol.

Confiscation of the domain isn’t a big deal. As I’ve already said, there are many anonymous hosting providers than have been tested on the Israel issue and came out the other side. 1984 is one, BDS served them an injunction in court in Iceland and 1984 was successful in fighting it and also avoiding divulging any info about activists.

If you wanted to it’s also possible to proxy server traffic so that the main server is never divulged which makes it very easy to swap domain names and providers. I consider this overkill for this use case though, would be necessary on a streaming site or something, though that should be hosted in Russia to avoid issues anyways, Russia essentially allows for the piracy of non Russian data.

Hostile takeover? Not if you don’t share credentials. The passwords and so on should be random and encrypted.

I’d argue every small social site should run on the principal that they will be prosecuted like an illegal streaming site. You can divest yourself of liability and doxing with basic opsec.

An example: host on 1984.hosting and pay with mined or donated Monero. Only access the site through a computer specifically for that purpose, and only with Tor / Tor Browser and a Linux distro such as Qubes, Tails, or less suspiciously, Fedora Atomic. Memorize credentials if possible, if not encrypt them on drive with a strong password via a keepassxc databases. If you are hosting the site properly, you can transfer the site podman/docker container and url with databases and info intact with no effort. Make sure the computer for managing site management stuff wipes itself on every shutdown sans credential info, has secureboot, and an encrypted drive. As an admin account, only access the site through base Mullvad Browser with a VPN (ideally Mullvad) or Tor Browser on a computer of your choosing.

You can easily say the site is no longer yours and your payment information will reflect this. This has been done before.

Yeah it’s not really suitable as a daily driver. Mullvad is imo

Mullvad browser and Tor browser are the only serious options for privacy on the internet. Librewolf, cromite, Firefox, brave, etc will get you fingerprinted. If you care about security more than privacy, use a chromium based browser. Personally, I use Mullvad browser with Vpn (use only protonvpn, mullvad, or ivpn, they have had security and legal tests) it’s the best combo of fast and private.

For mobile, the options are more limited. Ironfox, Cromite, and Vanadium (GrapheneOs) are the best bets for daily use. Tor Browser is the only one that actually stops fingerprinting however, but it is difficult to recommend it as a daily driver, it’s more of a tool.

Source: I actually help code security software and test it in real world scenarios regularly

+1 to op for posting the solution godspeed 🫡

Unforced error really, there’s a lot of secure hosting providers that take anonymous payments. Could easily say you transferred domain control to someone else to avoid liability when the law passed. They’re doing this because they have no convictions and are lazy at best, at worst they support Israel.

What I’m doing is illegal in my jurisdiction, ICE showed up for a reason. The law can eat my ass

I’m a communist trans woman with guns who helps house refugees for free in the USA. I’ve had ICE show up to my doorstep before.

It really depends on the game. Old games often run better on Linux than on windows. Check protondb to see how supported the game is, may be a driver issue. Old Nvidia parts use proprietary drivers which suck in comparison to old AMD parts which use open source drivers on Linux. New Nvidia parts use open source drivers, though these drivers are new and still having the kinks worked out. Sometimes laptops even have specific proprietary drivers that must be used for the laptop which can break compatibility with Linux or reduce performance. I’m pretty sure Intel is in the same boat, it’s proprietary.

Personally, for games I enjoy, I saw a small 5fps performance increase over windows on a newish desktop.

Genuine freak shit. Maybe wait until the government bothers you, don’t preempt them