Interesting, had no idea until now that there’s such a thing as first-party malware loaded with the BIOS. Admittedly I’m caught in an ivory tower with my Corebooted ThinkPad. Although I haven’t purchased one yet, I’d say you made the right choice going with Framework.

Lenovo’s ThinkPad line has a sterling reputation. Among the best in terms of quality, service, repairability, and Linux support.

As for the largely consumer-grade options of ASUS and Lenovo’s consumer-grade IdeaPads, they’re rather similar in reputation and quality. Not exceptional, but they’re both perfectly fine options as long as you avoid the budget laptop segment (plastic chassis, broken hinges, etc.)

Any difference in privacy would come down to the pre-installed software, which is irrelevant if you plan on using Linux. If you will be using Windows, it’s always better to install your own fresh copy to purge any potential spyware and bloatware installed by the manufacturer. The activation key for whichever edition of Windows it comes with is embedded in the BIOS, so it’ll activate automatically after a fresh reinstall.

the only way i escaped this until now as being able to afford the hefty price tags on linux-only hardware with something like system76 and i can’t afford it anymore since i no longer earn a software engineer’s salary.

Why not a second-hand ThinkPad/Latitude/ProBook? They’re cheap and cheerful and well-supported by most distros.

the only viable alternative would be to build septic tank

Me realizing I’m ahead of the game because I live in a home with a septic tank. But when you have to pump that tank every 5 years, if you can’t do that yourself, it’s going to be a lot less anonymous than a centralized sewer.

It’s there to protect you from crimes of opportunity. Like if your car is locked, a thief could decide to pick the lock, smash the windows in, or find another victim, but they would have no second thoughts if your car were already unlocked. The password deters a casual hacker and buys you some time to notice and deal with anyone seriously trying to break in.

In an ideal case of disk encryption and a well-designed lock screen, the password forces a would-be intruder to either spend lots of time guessing it or shut down the computer, thereby discarding the encryption key from memory and thwarting the attack.

Good starting point would be looking up forum or blog posts from people who have disconnected the modem/TCU on a particular EV model. No self-interested auto manufacturer (all of them) would intentionally provide an option in the user interface to take the telemetry system offline. Take note of any side-effects they report, if it needs to be reconnected for inspections, and if there’s any gotchas between software and hardware revisions.

Especially wrt. modern gas-fuelled cars for the typical driver as EV prices are artificially jacked up in many Western countries.

Keeping an eye on it since no other company is offering a similar lack of connectivity, but also not going to be surprised if it doesn’t deliver on its promises.

As a perfectionist myself, perfect is the enemy of the good. It’s good that you’re still learning and finding possible improvements. If you haven’t already, may I suggest organizing a copy of your customizations and dotfiles in one neat location? Saves a lot of mental anguish when you need to track down that edit to a config file you made some months ago.

What privacy though? The situation with LinkedIn just like Instagram. Even though they aren’t open for scraping, there’s still no expectation of privacy among the users who post anything.

I daily drive Debian now, but several years ago when a couple of my computers were still very new, I used Arch since it has bleeding-edge support for new hardware while being still thoroughly documented in the Arch Wiki.

The sheer volume of packages on the official repo and the AUR made it great for discovering which desktop environment I wanted to use and for software-hopping in general too. You can have as much or as little on your system as you want and nothing is forced on you.

I think ROCm is fine with more recent cards, but getting it to work on my RX 480, for which ROCm dropped official support a while ago, was a real pain.

Everything in Owner and a secondary phone for all proprietary work and communication apps. The secondary phone is powered off or at least disconnected once I leave work. Google stuff and banking through a computer browser whenever possible.

If I were forced to use only one phone, the secondary phone’s contents would be on a secondary profile. This used to be my setup but switching between profiles throughout the day wasn’t my thing.

I like knowing what my computer is doing and that was noticeably less and less the case as I went from Windows 98 to 10 and all the major versions in between. Before learning about Linux, simply going through the options in debloat scripts made me realize how invasive Microsoft was behind the scenes.

I know that he’s not necessarily the best resource, but Rob Braxman’s videos were first to bring mobile privacy concerns to my attention. Also, while his promotion of his custom phone didn’t lead to me buying one of them, it did lead to me learning about custom Android ROMs and eventually buying a Pixel for GrapheneOS.

No, they respect my goals and seem to have accepted that I’m sometimes just unreachable. The only thing they might be annoyed about is my GrapheneOS and Signal proselytism. If anything, it’s more apathy than antagonism. They’ll agree with me on privacy issues but rarely ever give up the conveniences of Apple, Microsoft, Google, etc. in practice.

As yet another modifier key. I use XFCE, so if I bind it to the applications menu, the applications menu will also pop up every time I use any other keybinding involving the Super key, which is less than ideal.

I don’t know how controversial this would be, I wouldn’t mind making it like the command key in MacOS either.

Enlighten me, I just want a bit of mindless entertainment while doing the dishes

If you can get your hands on the LTSC edition, that should have you covered until 2032

A noble goal in mind and I’m glad that the output of ChatGPT works for you. I’m not against LLMs in principle, but anything freshly spat out by an LLM is for you and you only. If AI was only used as an aid but you understand the codebase, document it and make it clear. Otherwise, you leave the assumption of vibe-coding open.

Mint is a very good option for this purpose. In my case, it’s Debian, but with a much more involved process.

The only ones who ask me to help with installing Linux are either very close friends or people in my family with whom I spend more time, and they tend to be curious about the exact setup that I’m using. I just so happen to have a fully-configured system image in a VM that I duplicate onto my machines, so I work with my friend or family to figure out what they need and how they want it to look, then I clone that VM, customize it to taste, and let them try it out. If they like it, I image it to their machine, make sure it’s bootable, work out any machine-specific issues, set a new password and encryption key, and make sure that unattended-upgrades is working.

Everyone else just asks me to help install Windows. I have a penchant for LTSC, with an obligatory trick up my sleeve.