First of all, I’d like to apologize for contributing to the constant stream/flow of posts in which the main theme/idea/motive is to find a suitable distro for the OPoster. I wish we’d have a dedicated community that’s active/large to the extent we’d be able to delegate/contain these convos to their designated places, but alas…

With that out of the way, we can get to the actual meat. So, for two weeks, I’ve been reading a ton about different distros. And while I’m still primarily overwhelmed by the amount of choice, I think I’ve finally got somewhat of an idea.

Requirements:

  • Software-wise, the only thing I’m worried about is Davinci Resolve. It should work, but it seems to be hit or miss. The distro I wish to use should handle this gracefully.
  • I’m a huge snob for security and privacy. As I’m kinda worried that desktop Linux’ security isn’t on par with M$ or macOS, I wish to use as secure of a system as possible to (somewhat) compensate for that.

I like to follow ‘authorities’ whenever I’m overwhelmed. As I’ve known them since their PrivacyTools-days, it was easy for me to designate Privacy Guides as such. Hence, I’ve come to appreciate its recommendations. But, I believe the tailor-made consensus by this communities’ experts is at least equally important.

That’s where I’m coming from, let’s head over to the questions:

  • Are PrivacyGuides’ recommendations actually good in the first place?

  • From what I can tell, the subset of security-focused distros are (at least potentially) my end-game. But, from what I could gather, they’re not sensible picks for a newb. Is this correct?

  • As for what remains, I got the following assumptions (please correct me if I’m wrong*):

    • The anonymity-focused distros don’t seem well-suited for general use.
    • Hardening Arch or NixOS to the extent we find within the offerings of Fedora or openSUSE isn’t trivial.
    • Fedora’s Atomic Desktops offer something tangibly superior security-wise over what we find for traditional Fedora and openSUSE at the expense of convenience.

    As such, am I correct to assume that Fedora Atomic Desktops are best for me? Would you happen to know if it plays nicely with Davinci Resolve?

  • Are there any other distros worth mentioning within the context? If so, which ones and why?

  • Any gotchas or otherwise I should be aware of?

Thanks in advance for your input!

  • infinitevalence@discuss.onlineEnglish
    201·
    2 days ago

    Distro’s are not like picking between windows or mac, Nearly all linux distributions are based on the same linux kernel and many of the base GNU packages. The main differences between distributions are philosophical.

    Some distro’s will focus on free as in speech over free as in beer meaning if something has closed source, or proprietary code they may or may not include it. You can still download and install proprietary software and drivers regardless of this initial choice.

    Some distro’s will have a preferred package manager which is like their software or app store, but if you dont like the one they picked you can install a different one.

    As for security, linux is as secure as you make it, its vastly more secure than Windows out of the box, and probably more secure than MacOS but we dont really know because both Apple and Microsoft dont publish their code so we cant review or audit its security. Setting up a secure linux install is dead simple and you can find dozens of guides for every distribution and edge case.

    Since the main tool you want to run is Davinci Resolve it makes sense to see what distribution they test against and go with that, rather than pick an arbitrary “secure” distribution. It will be simpler to harden their preferred distro than to take a hardened distro and make their software work on it.

    I suggest checking their website and going with their top suggestion.

    • 734Y4ch_7M3_7r0@programming.devOP
      3·
      1 day ago

      Thank you for your comment! It contains many gems to benefit from*

      It will be simpler to harden their preferred distro than to take a hardened distro and make their software work on it.

      This is what I found to be particularly curious. So, would you say that the (extra) security/hardening provided by the likes of Qubes OS and secureblue is trivial to apply elsewhere? If so, would you be so kind to give me some pointers? I did try to find it myself but failed. Perhaps I’m not using the correct search terms OR perhaps I don’t even know where to look.

      I suggest checking their website and going with their top suggestion.

      Excellent. Why didn’t I think of this before 😜 . Uhmm…, based on their instructions, I believe installing the Rocky Linux 8.6 image that they provide is the safe bet. Right?

      Finally, I’m left with two questions:

      • What does Rocky Linux’ absence from Privacy Guides list suggest? Would you happen to know how it’s (perhaps supposedly) tangibly worse than their picks?
      • stuner@lemmy.world
        4·
        1 day ago

        The easiest distros to run Resolve would probably be Rocky Linux 8, Alma Linux 8 (both are based on RHEL 8). Instead of the EOL Rocky/Alma 8.6, you should use release 8.10 (8.6 would update to 8.10 anyway). However, while still currently “supported”, these are still shipping (mostly) 6-year-old (!) packages. Also, only a small number of packages is actively supported by Red Hat. IMO, this implies that these distros offer a lower level of security. The most critical parts (browser, kernel) are still well-supported, so the difference is probably not too large for most regular users. However, you may also struggle to run some other software (although Flatpaks are available). It’s unfortunate that Resolve only supports an ancient version of Rocky (Rocky 10 is now out)…

        • 734Y4ch_7M3_7r0@programming.devOP
          1·
          8 hours ago

          Oh wow. Thank you so much for that information! Much appreciated!

          Hmm…, so I suppose both Rocky Linux and Alma Linux are out of consideration then. Which is definitely a pity considering Davinci Resolve. What would you suggest instead?