This is one of the reasons I use Flatpak whenever I can. I’ve revoked all Flatpak apps the permission to access the root of my home directory via a global override, so anything they wanted to do in there (e. g. create folders, place malicious code in my ~/.bashrc, etc.), actually happens in ~/.var/app/<appid>/.
Interesting! I have actually never used Snapchat, so I haven’t come across this.
That’s true. Luckily I removed Google Search Fixer from my browser this week, as I finally gave up on Google search (hopefully this time it’s permanent).
In my opinion its results have been getting so bad (including boolean searches) in the last months that I feel that other search engines don’t provide a significantly worse experience anymore. I was unable to find content on Google that I know I found there before and where I know that it’s still on the internet, as I was able to find it with other search engines. I actually found that for example Bing gave me much more results when filtering by date range, e. g. searching for web content dated before 2005.
Google’s web DRM project was the final straw for me to finally be serious about trying other search engines again (all my previous attempts eventually failed due to my boolean search requirement) and use as little Google services as possible. I have also tried to lower my usage of YouTube over the last couple of months by primarily subscribing to channels I know from YouTube on PeerTube and by using the Piped frontend more. Since I subscribed to YouTube channels via RSS already, it wasn’t difficult to switch the RSS feed over to PeerTube instead. ;)
Most websites? Haven’t come across one yet (I am using Firefox on all devices and don’t have any other browser installed) … Do you have any examples?
Obligatory PeerTube link: https://video.blender.org/w/m7eJZjgGSNGV1eqCQW262G ;)
Maybe Geary is what you are looking for?
That’s actually an issue with most Debian-/Ubuntu-based distributions, as Debian/Ubuntu still does not package QGnomePlatform. This is preinstalled on Fedora and makes Qt apps, like Kate, look nice on GNOME.
If I remember correctly, Flatpak apps from Flathub are unaffected by this Debian/Ubuntu issue, as Flathub includes QGnomePlatform in their runtimes.
Fedora Silverblue or Kinoite, as you will reliably be able to update the system, even after half a year of not using it.
Updates are atomic, so either an update is installed successfully or no changes to your system have been done whatsoever, there is no in-between state (i. e. broken system) possible.
Eh, I don’t at flatpak or snap unless I have no other choice
I thought the same until I discovered that Flatpak gives me the power to restrict apps in their permissions, similar to firejail, but less cumbersome. Since then I actually prefer Flatpak over traditional packages (I even switched to Fedora Silverblue), as I have a global override that, for example, revokes permission to access the root of my home directory or to use the X11 display server.
This allows me to keep a clean home directory, as applications are prevented from writing into my home directory (configuration files then automatically get stored in the Flatpak directory ~/.var instead) or, even worse, into executable files, such as ~/.bashrc. I can also be confident that applications use Wayland, if they support it, and not a less secure display server (X11). Applications that don’t support Wayland yet can either be made to run under Wayland (Chromium / Electron) or I have to grant those applications permission to actually use an X11 server (Bottles / WINE, Steam).
On the other hand you can also opt into punching as many holes as possible into the sandbox, for example by granting applications the permission to access a local shell. That might be necessary for development tools, such as VSCodium. The thing I like about Flatpak is that it offers this kind of flexibility and you can decide on a per-application basis which system resources the application can or can not access.
Sure, the permission model isn’t perfect (e. g. D-Bus access), but for my use-case it is a huge improvement and it gives me more flexibility with selecting my distribution, as I can get the very same up-to-date applications anywhere via Flatpak.
Eh, I don’t at flatpak or snap unless I have no other choice
I thought the same until I discovered that Flatpak gives me the power to restrict apps in their permissions, similar to flatseal, but less cumbersome. Since then I actually prefer Flatpak over traditional packages (I even switched to Fedora Silverblue), as I have a global override that, for example, revokes permission to access the root of my home directory or to use the X11 display server.
This allows me to keep a clean home directory, as applications are prevented from writing into my home directory (configuration files then automatically get stored in the Flatpak directory ~/.var instead) or, even worse, into executable files, such as ~/.bashrc. I can also be confident that applications use Wayland, if they support it, and not a less secure display server (X11). Applications that don’t support Wayland yet can either be made to run under Wayland (Chromium / Electron) or I have to grant those applications permission to actually use an X11 server (Bottles / WINE, Steam).
On the other hand you can also opt into punching as many holes as possible into the sandbox, for example by granting applications the permission to access a local shell. That might be necessary for development tools, such as VSCodium. The thing I like about Flatpak is that it offers this kind of flexibility and you can decide on a per-application basis which system resources the application can or can not access.
Sure, the permission model isn’t perfect (e. g. D-Bus access), but for my use-case it is a huge improvement and it gave me more flexibility with selecting my distribution, as I can get up-to-date applications anywhere via Flatpak.
I think they just aren’t sure how many instances you need right now (25? 30? all 50?) and that’s why they requested clarification for the actual resources needed. They don’t want to give you more than you actually need at the moment, so they don’t sit around unused for half a year until you actually use them.