Great to hear you’re willing to move to Linux!

Like other comments pointed, there is no such thing as “most secure”. It’s a deep rabbit hole and it’s better in general to assume that any device connected to the internet is at risk. Hell, any storage can be compromised if the entity interested put enough effort into it.

I recommande reading the page on Privacy Guides, it gives a good overview. In general, you should consider your thread model: what is you situation and why do you want security or privacy for?

• Regarding security, I would say for a general case, any modern, popular Linux distro with full disk encryption is probably good enough and as secure as any other OS. I would recommande going with a Fedora Silverblue or an OpenSUSE Tumbleweed, but the more popular Ubuntu or Mint are great as well for new users.
• If you also want “good enough” privacy, you should focus more on the software you are running, and the situation of your data, especially in your usage of your web browser. But that’s a different topic entirely.
• If you actually want more advanced security though, that’s where it becomes difficult/fun. You need to consider what you are trying to protect yourself from, specifically. Virus? Maybe a compartmentized OS like Qubes might be a solution. Physical access to your device? You can get a dead man switch that kills you system disk if your laptop is taken away from you. You want to hide your OS install from a security inspection? You can set a deniable full disk encryption with a facade OS that protect your from a rubber hose attack. Probably many other things exist I am not aware of.

But anyway, if your question is “Is a Linux distro at least as secure as my previous Windows”, the answer is definitely YES imo. And if you want MOAR, it’s gonna be a fun ride!

[edit: and yes, updates! Update you system plz.]

Pic is weirdly comfy ngl

Personally, I’d rather use Python with matplotlib when I need to plot stuff, but Octave is great if you have to deal with Matlab code!

Damn that’s a good looking mini rack! Great job!

I don’t have much experience or advice about Proxmox, just wanted to show appreciation ✌️

This.

In my experience, once you have the potential hardware compatibility issue fixed, it’s smooth sailing and simply a matter of getting used to the different tools on Linux!

I haven’t tried it myself but GrapheneOS supports the Pixel Tablet, so that might be an option! Not sure if the hardware meets your needs but it should be top notch regarding security and privacy!

/tmp or something

100Mbps up because copper T^T

ARF ARF

Guess I’ll die

Other systems should not be able to see your data on a Linux install as long as the disk is encrypted, which is proposed during the install of many distros.

AFAIU, ransomware will try to lock all devices, USB drives, etc, so no, your Linux install is not safe from that if it is on the same machine. Even machine on the same network might be at risk.

How to prevent ? Backup! Loosing your entire machine data should not be an issue but just a matter of re-installing the OS and recovering your data from a backup. Have at least two backup, including one outside of your house.

About dualbooting though… Putting Windows + anything else on a single drive is a really bad idea and Windows WILL try and take over it, at least breaking the boot partition. More concerning, and it actually happened to me recently: when putting a Linux on one disk and Windows on an other in the same machine, the Windows somehow still managed to break the Linux boot partition…

So if you can afford it and really want to have both OS, you should try and have two machines or at least install Linux on a drive that you can easily unplug.

I hope this will be helpful, good luck!

Now THAT’s oil painting !

It’s atomic Fedora with KDE

Plan 9 it is !

Thanks for the detailed reply! You’re not the first to mention gitops for k8s, it seems interesting indeed, I’ll be sure to check it!

I see, that makes sense actually! Thanks for the message!

I saw the landscape website before, that’s a LOT of projects! =O

My goal is to have a k3s cluster as a deployment env and try and run the services I’m already using. I don’t need to have any advance load balancing, I just want pods to be restarted if one of my machine stops.

How about I’ll do anyway? <3

I’ll check it! Thanks!

Wow that’s a lot of detail and information ! Thank you so much for taking the time to write all of this !

For the note taking part, it should be okay, I’m putting everything in my org-roam notes, including my current Ansible setup and my microOS combustion script!

For the rest, I’ll need to try it step by step; at the moment I think my problem is actually how to access the services with Traefik, I guess it will be an important step once I’ll figure it out.

Thanks again for the help!

Never heard about this way to use podman before! Thanks for letting me know!