Definitely one of the better answers I’ve received so far. Thank you for that. However, I feel as if the following part reveals that it’s not as ‘protected’ as I’d like:

It also doesn’t protect you if someone gets root access to your device through other remote means.

Though, at this point, I’ve somewhat accepted that I’m seeking a software solution for a hardware problem. Hence, the impossibility of my query… I hope I’m wrong and perhaps you can point me towards the solution I’m seeking. However, if that’s not the case, then I would like you to know that I appreciate your comment. Thank you.

I’m not the one you posed your question towards, but it’s related to Bazzite’s relation to Fedora Atomic and uBlue.

To put it simply, dnf is the ‘source of truth’ when it comes to package management (i.e. finding, installing, updating, removing (etc) of packages) on (traditional/regular) Fedora. So, dnf is basically to Fedora what apt used to be to Ubuntu. Sure, you can use Flatpak or any other (additional) package manager. But, there’s no need to unless the software you seek is not available for installation through dnf.

Bazzite, on the other hand, does not allow you to install any packages through dnf. Instead, rpm-ostree, flatpak, Toolbx/Distrobox and (exclusive to uBlue projects) brew (and ujust) are provided by default. But, you might have to learn when you’d have to use which and why.

To educate yourself on this, you should definitely consider reading up on the related entry within Bazzite’s documentation. In general, there’s a lot of very useful stuff in Bazzite’s documentation. Therefore, if you intend to use Bazzite, you should definitely read through its documentation.

Very informative. I appreciate it!

Understood. Thank you!

Alright. Thank you for your input!

I already use FDE. However, unless I’m wrong, FDE does not protect disk clone from occurring. Therefore, if one has access to the password, then also they have access to all my files; including the ones I specifically want to protect. Am I wrong?

So, I’ll make it simple for ya, you don’t need to understand why; however, I seek for some method that prevents files from being copied through disk cloning. Them files being encrypted or whatsoever doesn’t do a thing if the password is known. Unless you propose a method by which the password used to decrypt/unlock the disk on device X doesn’t work when it’s cloned to another disk. If, somehow, one has to rely on another password to decrypt the disk on device Y, then that might make it work out.

It seems I wasn’t clear as most people misunderstood me.

But, to give a very precise example; say

• I had a folder called ~/some/folder.
• It was on an encrypted drive.
• And I had done additional work to encrypt the folder again.
• And say, I used chattr, chmod or chown or similar utilities that remove access as long as one doesn’t have elevated privileges.
• And say, I had done whatever (additional thing) mentioned in your comment.

Then, what prevents whosoever, to copy that file through cloning the complete disk?

Even if they’re not able to get past the password, it will be found on the cloned disk. SO, basically, I ask for some method that prevents the file to even be copied through a disk clone. I don’t care that it has three passwords protecting it. What I want is for the disk clone (or whatever sophisticated copy/mv/cut or whatsoever utility exists) to somehow fail while trying to attempt the action on the protected files.

‘Move’; this includes copying, cutting or what have you. It should remain in the assigned directory/location. I’ll include this remark. Thank you!

Unfortunate. However, one bad move doesn’t justify dismissing systemd altogether.

Do I wish for s6 and dinit to be competitive with systemd? Absolutely. Do I wish for systemd what PipeWire has been for PulseAudio? Yes, please. Do I wish that distros/DEs would be less reliant on systemd? Hell yeah! (Can I please have an rpm-based distro without systemd?)

But, unfortunately, at least for now, systemd is the most robust and (somehow) most polished init we got. And I’m actually grateful for that.

By default, Fedora Atomic envisions the following in regards to installing packages/software:

• First, try the Flatpak.
• If that doesn’t work, use Toolbx(/Distrobox).
• If all else fails, resort to rpm-ostree.

This works pretty fine, but isn’t perfect:

• Flatpak has become pretty good for software with a GUI. However, while it can do CLI, it’s underutilized.
• Toolbx/Distrobox has its merits, but not everyone enjoys consuming CLI through containers.
• Besides the fact that installing all your CLI tools through rpm-ostree will negatively impact how fast you can update your system, it also requires you to (soft-)reboot before you can access the newly installed package (unless you enjoy living on the edge with --apply-live). This can be pretty cumbersome, especially if you’re in flow.

Thus, the situation around CLI on Fedora Atomic became a sore to the eyes. Within the community, there were multiple attempts to tackle this problem:

• Nix; For some time, this was the perfect solution. Unfortunately, in its current iteration, installing Nix on Fedora Atomic requires SELinux’ enforcing mode to be turned off. As turning enforcing mode off is unacceptable for uBlue’s maintainers, this was eventually dismissed.
• Better tooling around Toolbx/Distrobox; There have been made some efforts in this regard, perhaps most notably Ptyxis. But, we’re not there yet. Though, some are hopeful of what podmansh will bring to the table.
• Homebrew; It behaves as any other package manager used for installing packages from the repository on any Linux distro out there. Except, in this case, it’s exclusively utilized for CLI. Currently, it’s simply the most straightforward in use. You just have to teach people to replace their apt/dnf/ pacman with flatpak (for GUI) and brew (for CLI). Furthermore, it comes with a big and healthy repository. Finally, it utilizes technologies related to the ones found on Fedora Atomic.
• systemd-sysext; This has only very recently been added to systemd. I wouldn’t be surprised if this will play a prominent role going forward. Though, I’m unsure if CLI will benefit most of it.

Thank you for the response!

the wikipedia linux article with the linux development tree

Aight. Understood. Therefore your interest is still pretty juvenile. Thus, I recommend you to either install FreeBSD on a device to revert right away or dismiss the thought of FreeBSD for the foreseeable future.

I have no idea

Aight. It will be (on average) (a bit) more troublesome until you’re past the learning curve. Which is steeper and broader than the one found on Debian/Mint/Ubuntu.

So, all in all, I would forego going for FreeBSD for the time being. Thank me later.

what linux OS should I install on a backup notebook if my main one is debian?

It depends:

• If your backup notebook will only rarely be used, then just make it Debian as well. I can’t think of a reason why you’d make it harder on yourself for those spare times you’d have to rely on the backup notebook. (As a side note, if your main system was on a rolling release (like e.g. Arch), then there would be merit in going for a different (i.e. more stable^[1]) distro (like e.g. Debian Stable) on the rarely used backup. This is tied to the fact that rolling release distros somewhat require you to update every so often for proper functioning. This hassle is simply absent on distros like Debian Stable etc.)
• However, if the backup notebook will be used as a second system of sorts for all kinds of needs and does not have to be reliable per say, then please be my guest and quench your distrohopping thirst to your hearts content.

Install linux mint, so I get ubuntu but without them throwing their subscription services down my throat.

Linux Mint does indeed provide you some Ubuntu goodies without its associated negatives. But, perhaps it’s worth mentioning LMDE; i.e. Linux Mint Debian Edition.

I’m unsure about other advantages

Linux Mint does a lot of heavy lifting to provide a seamless and polished experience. This does come with being more opinionated than either Debian or Ubuntu is. However, one might argue that they’re just offering the bare minimum that your average Linux user would want on their systems anyway. Hence, it’s unsurprising that Linux Mint has become the go-to distro for many newbie and veteran Linux users alike. You don’t know what you’re missing if you’re unsure of other advantages…

maybe the more frequent program updates? Kernels are also updated more often than with debian as far as I know.

FWIW, Debian also has its testing and unstable releases.

Do you know of other advantages?

As has been previously alluded, Debian is pretty bare-bones compared to Linux Mint. So, if you’re mostly interested in setting up things exactly as you’d want to, then you should go for Debian and build it up as you go. However, if you’re more in favor of sane and opinionated (albeit bloated to some) defaults, then Linux Mint takes the cake. Ultimately, you’d have to experience it for yourself and come to your own conclusions.

Go for FreeBSD

😅

this might require a learning curve, because this is an OS I’ve never used.

Yup.

Are commands that different from debian?

Debian (and its commands) are more similar to Arch, Fedora or any Linux distro for that matter than it is to FreeBSD. Like, it’s a pretty significant departure. And one, I’d argue, you’re simply not equipped for (yet).

Overall, I think making the move to FreeBSD doesn’t seem like the logical next move for ya. Its ecosystem (unfortunately) is a lot less developed compared to Linux. And while there are definitely some pros and cons to it, I just can’t fathom why your average user would use it without properly knowing what they’re getting into and why they’re deliberately and consciously making that choice. If you allow me, may I ask you where this interest to FreeBSD stems from?

other more niche linux OSs seem too much a hassle and I guess won’t be as supported as the main ones.

Do Arch, Fedora or openSUSE (to name a few) fall under “other more niche linux OSs”? Furthermore, do you think that FreeBSD will be less of a hassle compared to “other more niche linux OSs”?

1. The term “stable” is used here to mean slow cadence of change which manifests most commonly as little to no updates in-between point releases. These point-releases occur annually/biennially and come with big updates/changes. As you might expect, a distro with a release cycle as such comes with the added benefit that (little to) no breakage should occur until the next point release. Hence, these distros are (rightfully) associated with providing reliable and robust experiences. Though, this does not mean that they have a monopoly on this. When used responsibly, all (if not most) mainstream/popular distros are able to provide reliability and robustness.–