First of all, I’d like to apologize for contributing to the constant stream/flow of posts in which the main theme/idea/motive is to find a suitable distro for the OPoster. I wish we’d have a dedicated community that’s active/large to the extent we’d be able to delegate/contain these convos to their designated places, but alas…

With that out of the way, we can get to the actual meat. So, for two weeks, I’ve been reading a ton about different distros. And while I’m still primarily overwhelmed by the amount of choice, I think I’ve finally got somewhat of an idea.

Requirements:

  • Software-wise, the only thing I’m worried about is Davinci Resolve. It should work, but it seems to be hit or miss. The distro I wish to use should handle this gracefully.
  • I’m a huge snob for security and privacy. As I’m kinda worried that desktop Linux’ security isn’t on par with M$ or macOS, I wish to use as secure of a system as possible to (somewhat) compensate for that.

I like to follow ‘authorities’ whenever I’m overwhelmed. As I’ve known them since their PrivacyTools-days, it was easy for me to designate Privacy Guides as such. Hence, I’ve come to appreciate its recommendations. But, I believe the tailor-made consensus by this communities’ experts is at least equally important.

That’s where I’m coming from, let’s head over to the questions:

  • Are PrivacyGuides’ recommendations actually good in the first place?

  • From what I can tell, the subset of security-focused distros are (at least potentially) my end-game. But, from what I could gather, they’re not sensible picks for a newb. Is this correct?

  • As for what remains, I got the following assumptions (please correct me if I’m wrong*):

    • The anonymity-focused distros don’t seem well-suited for general use.
    • Hardening Arch or NixOS to the extent we find within the offerings of Fedora or openSUSE isn’t trivial.
    • Fedora’s Atomic Desktops offer something tangibly superior security-wise over what we find for traditional Fedora and openSUSE at the expense of convenience.

    As such, am I correct to assume that Fedora Atomic Desktops are best for me? Would you happen to know if it plays nicely with Davinci Resolve?

  • Are there any other distros worth mentioning within the context? If so, which ones and why?

  • Any gotchas or otherwise I should be aware of?

Thanks in advance for your input!

  • jinx@lemmy.zipEnglish
    91·
    2 days ago

    immutable distros (e.g. fedora atomic desktops) are secure in the sense that they’re containerized. if that’s something you’re after, i don’t see why it wouldn’t be a good fit for you.

    they do rely on flatpaks, so you’ll need to make sure davinci resolve comes as one. it doesn’t seem to be on flathub, but i do see someone else has packaged it. if that runs well, i think you’d have nothing to worry about.

    • 734Y4ch_7M3_7r0@programming.devOP
      2·
      1 day ago

      immutable distros (e.g. fedora atomic desktops) are secure in the sense that they’re containerized.

      Hmm…, is it like properly sandboxed? That wasn’t the impression I was getting. But I’m more than happy to be wrong on this.

      Furthermore, how do they achieve this beyond Flatpak?

      but i do see someone else has packaged it. if that runs well, i think you’d have nothing to worry about.

      Oh, wow, that’s pretty cool. Thank you for that find!

    • yo_scottie_oh@lemmy.mlEnglish
      9·
      2 days ago

      On immutable distros, one can still get something not available as a flatpak by installing it in a distrobox container.

        • 734Y4ch_7M3_7r0@programming.devOP
          2·
          1 day ago

          That looks pretty cool. Thank you so much for sharing that!

          Would you happen to know how it compares to the flatpak (or something) that was shared by the other person?

          • Vittelius@feddit.org
            2·
            15 hours ago

            Resolve is not available as a flatpak so distrobox would be your only option to get it running on a atomic distro.

            But in general flatpaks are more secure than distrobox containers. Flatpaks are sandboxed. Apps can request access to different parts outside the sandbox through so called portals. Portals are basically like the permission system on your phone. But not all portals are finished yet so apps can get way more permissions in the name of user friendliness. There are third party tools like flatseal, that manage permissions though.

            Distrobox on the other hand doesn’t have any of that. Apps can access your entire home directory and a bunch of other stuff if they want