Not a single mention of secure boot? Weird.
I would say you are already secure enough if you are using software from official/trusted repositories and updating them on a regular basis.
That said, if you want extra security. Drop all software that cannot run on Wayland and go even further by isolating all desktop applications with the Flatpak sandbox. This is made extremely easy with Flatseal. Maximum points if you setup secure boot.
Did you know Firefox has also adopted manifest V3.
Join the Chromium monopoly it is the superior browser. Aside from not having tab containers, it beats Firefox is almost every other way.
There are no ways to beat this. They want your real number. That’s the point.
If you are talking about the arch installer. It’s still a commandline. Nothing like the popular calamares GUI installer. Anyone can follow steps to an install easy. The real juice is in maintenance of the installation.
Check out a few videos on how to install Arch Linux. It will cover all your needs and then some.
Use whatever software your peers are using, the way they are using them. The importance of software compatibility cannot be overstated.
I’ve broken installations many many times. But here’s a recent one that comes to mind.
I was playing around with audit and some file was not responding as I wanted it to. Somehow my pea brain got the great idea to remove all config, uninstall audit then have the new install refresh the configs. Did this straight through the warnings and effectively broke sudo, a dependency of audit. Good thing arch-chroot exists.
I’ve done rm -rf / twice on Fedora installs.
Security and privacy be damned.
This is how Signal should have been designed in the first place.
Willing to bet he drugged his victims with 100% pure cocaine.
I use whatever this guy recommends to use.
Warp is 2 products. A wireguard-go VPN that changes your IP and uses cloudflare’s network instead of your ISP. This service doesn’t necessarily require the 1.1.1.1 app (desktop app is called cloudflared) since it’s just Wireguard under the hood.
And Warp is also a VPN tunnel that allows you to reach services hosted on Cloudflare’s network with their client cloudflared as you just described. This allows you to make any service available on the internet and further manage its access using Cloudflare’s firewall options or Zero Trust for secure private applications.
The latter use is more popular than the former in my observance since not many people I know aside from the Chinese use it as a VPN. (mainly for circumventing their national firewall).
Aside from the fact that I’ve used it long enough without encountering any breaking issues or bugs, it is very powerful and highly customizable.
It’s 100% a cultural (deb) issue. Discord wouldn’t distribute deb files if users were not accustomed to downloading package installation files like savages do in Windows. As many other software vendors do with their “Linux” packages.
Flatpak for all *possible installs of user apps. But if there’s an app I respect most, it has to be MPV.
One more strike for the deb monoculture (read complacency).
It appears to be possible https://flathub.org/apps/com.protonvpn.www