I trust code more than politics.
As I mentioned, using rustup requires granting VSCodium more invasive permissions to get it to work. Furthermore, installing it would require layering system packages, which should be done sparingly. Using the Rust SDK is the recommended approach by VSCodium while using their Flatpak, and it is actually the simpler option.
secureblue has native support for containers, although it uses the more modern Distrobox rather than Toolbx. I tried installing VSCodium in this way, but I couldn’t get it to start due to some windowing system issue. Even if I could, it comes at the cost of security. Firstly, user namespaces need to be enabled. Secondly, the app would have less granular permission control (e.g. full access to the home directory). For those reasons, it’s better to avoid using containers unless explicitly required. This method works fine, so there’s no need.
This guide is actually only 3 steps:
The rest is just extras, like installing rust-analyzer, which you would need to do on any distribution. The reason it’s so long is because I wanted to make it painstakingly simple for anyone to be able to do it, regardless of using the command-line, user-interface, mouse, or keyboard. Depending on how hardened you’ve made your secureblue system, you really could just install everything with one command:
flatpak install -y com.vscodium.codium org.freedesktop.Sdk.Extension.rust-stable/x86_64/24.08 && flatpak override -u --env=FLATPAK_ENABLE_SDK_EXT=rust-stable com.vscodium.codium
secureblue isn’t designed to be fast, easy, or simple. It’s designed to be secure.
Hope this helps!
Will the official PeerTube app for Android ever adopt Kotlin, Jetpack Compose, and Material 3 Expressive?
Looks good! Thank you!
I’d be happy to collaborate in the future if you ever want to :)
Both of which also appear (looking at this on mobile) to require compiling by the user.
Vanadium comes preinstalled on GrapheneOS, and Trivalent comes preinstalled on Trivalent. Compatible Linux distros can add the Trivalent repo to install it without building.
Show me something Windows based that can be as secure as LibreWolf along with the appropriate extensions for blocking ads, fingerprinting, CDNs, and other spyware-like content.
LibreWolf is far from secure, as it is based on Firefox and so comes with the same security issues. If you meant to say privacy and not security, the reason nobody makes high threat model browsers for Windows is because Windows itself is not private and it would be a losing battle.
Both. It’s open source and privacy respecting. Though, email is fundamentally insecure anyways.
How did you find these yourself?
I’ve been learning about privacy for the better part of 6 years. At first, most of my information came from lurking on Reddit and Lemmy, but then I started getting first-hand experience and doing my own research.
I have my inbox hooked up to my RSS reader, too, which means I get a notification on my phone every single time someone comments…
Who can I credit for the infographic and links?
Simply leaving a link to this post is fine. Thank you!
People still not getting the meme portion of this?
64 people and counting :P
I was actually expecting you to comment.
May I share on my blog and with my newsletter subscribers at Punching Up Press?
Absolutely! Giving credit is appreciated, as well.
An issue arises with that. Linux is fundamentally insecure, as you are likely well aware if you use secureblue. secureblue is designed to be as secure as possible while still being Linux, and so is still bound by the same constraints. Qubes OS is not a distro, so it (should be) more secure, but it is an absolute pain to use. Furthermore, Qubes OS emulates Linux distros, so the question becomes “Why not just emulate the most secure Linux distro?” which is either Whonix or secureblue depending on who you ask. Is that more secure than running secureblue on bare metal? What about GrapheneOS used in desktop mode? And what about emulating Linux inside of GrapheneOS using the Linux terminal? There are plans to use multiple distros inside of the terminal, so what about secureblue inside of GrapheneOS?
The whole situation spirals out of control. I know this iceberg chart isn’t ranking security, it’s ranking what software people generally use for each experience level, but neither secureblue nor Qubes OS would fit nicely in any category. You can read this post for more of my thoughts about this mess.
A beginner will choose what seems private, regardless of whether or not it actually is.
How the heck is TOR less secure than any of the vpns?
This isn’t a ranking of security. It is ranked based on the experience level at which people generally begin to start using certain software. They build on top of each other.
“As seen on TV” does not imply privacy, it just implies a large advertising budget. These are software that market themselves as private (and are sometimes better than nothing at all) but may still be just as bad as software on the tip of the iceberg.
Not all Chromium-based browsers are bad. Browsers such as Vanadium or Trivalent are very secure, and discourage the use of extensions altogether due to privacy and security risks. These browsers come with ad blocking preinstalled.
well that section has a few not so effective services, like authy, and imo brave and adblock, to depict what people believe at that point.
Yes, this is the exact reason Telegram was put there. I even see Telegram recommended alongside Signal, despite the privacy risks.
There are plenty of options:
Even without any of those, the chances that you will be completely stranded with no one to help and no way to call emergency services are very, very slim. Privacy protects you from more likely scenarios, such as data breaches or identity theft.