[-] khalil@beehaw.org 9 points 3 weeks ago

First and foremost, you are outright dismissing Flatpak, which accomplishes all of your goals pretty much, with a vague desire to use "plain old Linux" instead of a proper motivation. You should really stop and ask yourself, WHY not Flatpak? What do you actually want, and why is Flatpak not the answer to that?

I point this out first because then in the next paragraph you mention some tools such as Firejail. Which is attempting to do more or less the same as flatpak, but in a more crude/less polished form. And neither Flatpak or Firejail are "plain linux", they're just fancy wrappers around a whole bunch of actual "Linux features", like namespaces, seccomp, cgroups, users, chroot, filesystem permissions, and other higher-level tools such as bubblewrap (in the case of flatpak).

So, do you want to learn the underlying primitives/underlying tooling? If so, start with users, filesystem permissions, and Linux namespaces and the other Linux features I've listed.

Or do you want to just deploy applications in a sandboxed environment? If so, use Flatpak/Firejail/Snap/Linux containers such as Podman or Docker, etc. Then manage permissions using Flatseal (in the case of flatpak), and you're done.

How should I do this? I need some sources to read all about linux user accounts.

You should stick with trusted sources such as TLDP, Redhat/Fedora docs, Archlinux Wiki, Gentoo Wiki, etc. For example, regarding users:

[-] khalil@beehaw.org 1 points 2 months ago

AFAIK signal stil requires a phone numer for registration, however you now can add people by their username.

[-] khalil@beehaw.org 2 points 2 months ago

E-mail is horrible for privacy, spam, instant messaging, etc. PGP "works" in very limited scenarios, and e-mail is not really one of them.

Plus these two statements seem unplausible for me:

we can assume you're protected by PGP when writing to most users,

and

and with the added effect of not needing to convince anyone to install anything since from their end it's just an email.

I disagree with the first statement, most users don't know what PGP is and therefore don't have keys, so you can't encrypt anything to them. The only way most users would use PGP is if something sets it up for them, alá protonmail or my using some special client. Since you've said that from their end it is just an e-mail, how does Deltachat add any meaningful encryption?

[-] khalil@beehaw.org 2 points 1 year ago

AFAIK biometrics are only used to unlock the device's keychain. So, in other words, it's no different than using fingerprints to unlock your password manager (via the device's keychain that has your actual password).

[-] khalil@beehaw.org 3 points 1 year ago

The compression issues are true for 1080p too, any dark scene on Netflix gets some horrible color banding and artifacts.

Ironically, the pirates don't have that issue as their multi-gig torrents don't have much compression compared to the some-hundred megs stream provided by Netflix

[-] khalil@beehaw.org 1 points 1 year ago

An Amazon Fire Stick is far smaller, much quieter, draws less power and is simpler to use than a general-purpose PC.

Plus, if I'm using a PC I'd probably only use Linux, so I'd have to deal with lower quality streams because DRM... so overall the experience would be worse.

Using a more 'normie' Windows box as a streaming box could work, but that doesn't solve the noise(!) and power draw issues, that feels like a compromise rather than a choice.

I've recently bought a Fire Stick and don't regret it one bit. It's doesn't fell janky and doesn't have ads as far as I can tell. The provided remote inclues an IR emitter than can turn the TV on/off and change volume (why isn't this provided by HDMI itself is beyond me), and it's much faster than any smart tv so you can watch content without having to wait

[-] khalil@beehaw.org 1 points 2 years ago

They've violated the licenses

Did they? Because as far as I know they're complying with the GPL and other licenses, since everybody that gets their RHEL license (and the software/binaries) also gets the sources. Or am I mistaken?

I don't think the license says 'grant everybody a copy of your source code', only the ones that actually bought access to the binaries RHEL provides

khalil

joined 2 years ago