I’ve gotten pretty skeptical about the real advantages of NAS for home use. You could get any number of low cost PCs used or new and just jack in some external drives, and you’d be surprised… LVM allows for multivolume “drives” these days, and while I can’t speak to longterm robustness, it is SO much cheaper than a NAS with internal drives, and your network is probably no faster than USB2… In terms of privacy, they’re almost certainly hashing every file you send/receive, if not everything it stores, and possibly nmapping your network for marketing research like how Roombas phone home with your house layout.

deleted by creator

Sure, it would also benefit it if the French state weren’t going after a civilian project… I will grant it’s a lot, but how would YOU react to a G7 member state going after you with a smear campaign?

Then why present this as recent concern about the project if it’s a personality trait going back years and unrelated to the French smear campaign I suspect you are financed by?

He is literally claiming that the French police and state are behind this campaign against Graphene, and I believe him knowing how the French are, but believe what you want…

OR, France is an evil, genocidal, ethnostate full of pedophiles, so we should maybe apply our Israel-tinted glasses and presume France to be the villain until we have concrete proof otherwise rather than blaming the victim.

Wow, this is very confirmed kills copypasta energy… at any rate, while I’m sure hundreds of hours of security podcasts have taught you many things, again, the original point being disputed is “Mainstream Linux is less secure than macOS” and a side point about the risk of not firewalling a modern mainstream Linux distro on public wifi.

As you state, network traffic is handled by the kernel network stack. The firewall (iptable rules, not magic) is network stack software that runs on that same Linux kernel. In what regard is the local firewall itself magic where “CVE stuff can[n’t] happen” on public wifi? If macOS is more secure inherently here, how? If that answer is “bSd MaGIc” okay, sure… do you understand what percentage of exploits are “hacks” in the 1990’s become root with memory exploit on hardware way in 2025? I challenge you to find a case, even at a hacking event of someone raw banging on a closed port on a modern mainstream Linux distro until they overflow into something. This is also a Starbucks… I don’t think anyone is rocking their 0-days at random Starbuckses.

You keep talking about non-default setups on fringe distros. Nobody is arguing Puppy Linux from 2010 with Limewire installed is secure to put on the modern internet at Starbucks, although I would give 99.999999% odds nobody will sidejack your insecure X11 stack at a random Starbucks even on unfirewalled Puppy Linux from 2010, even with Limewire.

The assertion was literally “Mainstream Linux is less secure than macOS…”

Packet sniffers have nothing to do with OS or firewall, so I don’t know what packet sniffers have to do with this. Can you name an arguably “mainstream” distro where it is the case that X is open by default?

Are you aware of an IRL exploitable CVE for even marginally up to date-ish Ubuntu or Fedora without user installed non-default services, exploitable by cold hitting a random port like a windows 98 worm? Maybe I’m just massively misinformed, but I don’t believe such a thing has existed since the Debian bad randoms meltdown of the 2000’s, but even that would require sshd running, which afaik Fedora and Ubuntu don’t have on a default install unless the user turns it on, so despite the Starbucks wifi happening to have a 1337 h4x0r utilizing perfect AI capable of finding all CVEs and chaining them he isn’t getting in on a closed port on ANY modern unix.

Yes. And what would be open, much less exploitable, on a default install of a major distro at all, much less on the timeframe on which one would normally be on public wifi?

Ubuntu, Mint, and Fedora all ship with default firewalls and that’s probably 80+% of laptop users. I’m also skeptical that there would even be a specific danger from taking an unfirewalled box that’s just running a browser and Steam on public wifi in 2025, which would presumably be most n00b use cases.

Mainstream Linux is NOT less secure than MacOS, and if you’ve ever seen how buggy non-Graphene Android is, tell me this OS is doing secure memory management with a straight face…

Exactly, the Intel TPM is almost certainly a literal NSA backdoor, as claimed by the Chinese government (which would explain Microsoft giving up Windows market share by requiring that for Win 11). When your CPU has its own network stack in a secure enclave that is inherently its own OS basically, how does running a pure open source OS on top of that mitigate anything?

Most of your indies on Steam will run on anything remotely modern, even integrated graphics. AMD is easier. RAM costs more than you’d think nowadays but I would still get at minimum 16gigs. Any decent AMD video card will play most AAA’s that are on Steam at 1080p, and I find Steam doesn’t want to ever do 4k anyway, but maybe that’s a quirk of my setup. I’d also get more HDD space than you think you need, ever more games are like 200GB fully installed.

I do. It’s fine. Probably overpriced when I bought it, but you can find good deals now (and on the insanely priced base for it). It does definitely feel cheaper than a Pixel phone, but it works perfectly well.

deleted by creator

deleted by creator

deleted by creator

deleted by creator

deleted by creator

deleted by creator