But stale bread for French toast??

eOS is just Android, so Android apps work.

That aside, eOS has a history of being often behind on security patches and updates, so it is highly recommend to avoid it.

I highly recommend openSUSE Tumbleweed (or Slowroll). It is a rock-solid rolling-release where most things can be done from the YaST GUI. The installer is very granular, you can pick and choose based on groups of programs (like internet, office, desktop environment, etc) or individual packages (in advanced mode).

It has never broke on me and I have used it on and off for several years now. I like to tinker so I often do reinstalls of other distros when I break them but never needed to with Tumbleweed.

It is modern but not unfamiliar, rolling but not unstable, granular but not overwhelming (imho).

If rolling-release isn't your thing there is also openSUSE Slowroll which does updates monthly (apart from security updates which are back ported)

Even if you don't pick Tumbleweed, there are plenty of good options. Rapid fire I'll recommend some others.

• Fedora Workstation: my next favorite distros for many of the same reasons as Tumbleweed, semi-rolling and major updates every 6 months, but no YaST or granular installer. It uses GNOME desktop environment.

• Fedora Atomic: pretty much Fedora Workstation but more stable because the root filesystem is read-only and updates are pushed as an OCI image. You can still install anything supported by Fedora.

• Universal Blue: Modified versions of Fedora Atomic which aim to be much more user-friendly and preconfigured out of the box. I recommend them over Fedora Atomic vanilla images. Bazzite is my recommendation for any gamer on Linux (though most distros work).

If you want to have a good experience on Linux, avoid perpetually out of date distros like Debian/Ubuntu and their derivatives. Linux game support is always improving, same thing with basically everything, so dont kneecap yourself with slow/stable release distros.

Thanks for the rant, I liked your write-up.

I think it may also help some people to create simple decision flowcharts to help with acting consistent and avoid making simple mistakes with a complex threat model. Basically a scenario and the decision tree. Say for example someone is using QubesOS and needs to keep consistent what each qube is for and why.

Of course creating charts that show your strategy and make your decision predictable is itself just even more privileged information you now need to protect.

Also, any effective threat model also requires consistent reevaluation to assess the effectiveness of your methods and adjust with the evolution of threats.

No

It is important if you care. They sign releases with the same Tor Browser key. Instructions are found on this page: https://mullvad.net/en/help/verifying-mullvad-browser-signature

You need 2 files (both are on the download page):

• Browser file
• Signature file

The basic process is as follows:

1. Obtain signing key.
2. Verify browser using signature file.

Note: Ignore warning about the key not being signed with a trusted key (we skip an unnecessary step for a begineer walkthrough)

You can double check everything I said by looking at their instructions.

When you mention Visual Studio, do you mean VSCode or Visual Studio. Cus VSCode is supported on Linux but Visual Studio is not. Confusing right?

See if RTranslator meets your needs for a gtranslate alternative.

Also, Heliboard has swipe/glide typing and can use other STT/voice type apps. I recommend Heliboard + FUTO Voice Input.

The only way I know to harden Linux Mint is using the Debian edition. Using LMDE, you can (unofficial) use Kicksecure to harden the base system. This isnt a great solution since the Linux Mint software is untested with Kicksecure and may/will reduce the security of the overall hardening.

Because that is the only way official to install the Proton VPN app on Fedora systems??

I wouldn't stress much. It would take a targeted attack to have actually compromised your phone. It is alright.

My recommendation is GOS if you care about out of box experience and using gapps, DivestOS if you care about degoogling and removal of proprietary code. Both are hardened.