alt

Additionally, ensure that flatpaks are installed within that home partition. Some distros (like Fedora) default to installing flatpaks system-wide (and thus flatpaks end up being installed in /var instead). So, after ensuring that your home folder is correctly found within the home partition, just install flatpaks with the flatpak install --user *package-name* command.

as from Firefox RPM for example I can open any file and save anywhere. But its process isolation right?

For Firefox, the verdict on its native sandbox vs Flatpak's native sandbox doesn't seem conclusive. With -assumingly- knowledgeable peeps on both sides of the argument, which indeed does raise the question how knowledgeable they actually are. Nonetheless, for myself, I've accepted Flatpak's sandbox to not be inferior to Firefox' native one. Thus, I don't see any problem with using its flatpak.

Damn good find! Not expensive, about double the price I paid but still very reasonable.

Oh lol, that's a considerable difference. Though I suppose the Intel CPUs on your device probably aren't 12th gen?

they have a Tux bootsplash logo in their Bios??

Who offers that :P ? Did I somehow miss that?

And the BIOS really is great, I will miss that on Coreboot I guess. But all the necessary features should be there.

coreboot FTW!

Thanks for taking the time to take a proper look at the link!

I linked the source but sure, I’ll link it more for you.

I am aware, but the same source seemingly contradicted your point^[1]^ regarding sub-sandboxing.

Wow, thanks a lot for the work you've put into this! It might take some time for me to go through this, but I'll definitely take a look and perhaps I'll return on this at a later point. Perhaps with this I will finally be able to install my Chromium-based browsers as a flatpak and don't feel bad about it.

Once again, your engagement has been much appreciated! So please feel free to let me know if I can buy you a coffee or something 😊! Unfortunately, statements like "Thank you so much!" don't quite capture the sheer magnitude of gratitude I feel towards you right now. For whatever it's worth; I salute you, good human.

1. "It lets Chromium use flatpak sub-sandboxes" that you expressed in this comment.

No the NV41MZ for example has no numpad.

That's unfortunate.

but it was the only clevo on like all Europes Ebay. Literally shipped it in from Great Britain

Honestly, I haven't done a lot of business on Ebay. So, I don't know a lot on how much cheaper you might get devices from there. Though, I wonder if it's a lot cheaper than say this device.

Thanks, true!

😉

The people from Novacustom are very nice.

Agreed. They definitely are.

Unfortunately, you didn't -to my knowledge- support nor retract your claim on Chromium using flatpak sub-sandboxes. Therefore, I find it hard to continue taking your words at face value.

I have enjoyed these interactions, so don't get me wrong; but if I (possibly) catch you on spreading misinformation (even if unintentional), then I find it hard to keep engagement up as there's no guarantee that anything else coming from you is actually correct.

I would love to be corrected on this though, so please feel free if I have misunderstood you or anything else that would revive this conversation. If not, then I would still like to thank you from the bottom of my heart for this friendly interaction we've had. Take care!

spare parts

It seems NovaCustoms offer some spareparts. I wonder if the ones not explicitly stating NV4xMZ can be used on your device as well.

Am I going off the deep end by considering Fedora Silverblue or Kinoite?

I started my Linux journey on Kinoite, which unfortunately had some issues at the time of installing; after which I rebased to Silverblue, I have since 'mained' Silverblue while experimenting with a couple of other distros through dual-boot or on spare devices. The first two weeks were really hard as I literally knew nothing about Linux. The fact that documentation is -generally speaking- lacking doesn't help either. But if I was able to surpass that initial barrier, then I'm sure you can too.

But, motivation is important! Why do you even consider an 'immutable' distro?

I don’t really understand what new I would need to learn

You'd have to replace sudo dnf install *package-name* with flatpak install *package-name*. If, however, the package is not available as a flatpak, then -following Fedora's initial guidelines- one should install it within a container through Toolbx(/Distrobox). After a container has been created (toolbox create *pick name for container*) and entered (toolbox enter *chosen name for container*), one simply behaves within the container as though how they would in a traditional distro. As a last resort -in case installing within a container is not possible, well supported or doesn't work as intended- one can layer it (rpm-ostree install *package-name*).

Furthermore, /usr can't be touched (at least not easily), except for /usr/local. And some features, like UKI, aren't supported yet.

or really what benefits it would have.

• Updates are atomic; it either happens or doesn't, there's no in-between state. Even a power outage or a random crash doesn't change that. This ensures your system isn't broken if something unfortunate befalls it.

• Additionally, the system (for the most part) is reproducible; I can rebuild my system from scratch (barring configs; unless your dotfiles management is sublime) and it is exactly the same as the one that has been running since the inception of Silverblue. Cruft, state, bitrot etc can finally be left behind..., but we're not their yet. There's still some amount of these present in Silverblue's current model. But we're embracing OCIs and Silverblue's primary contributors know what's up over at NixOS and (hopefully) are working to make Silverblue ever so slightly more stateless. Even if a lot of work is still required, it's infinitely better than the traditional model as it has gone from an uncountable amount of possible states to a countable amount. And the mathematicians under us know that such an improvement is infinitely times better. Another benefit of where we are currently with reproducibility would be that it allows us to combat bugs effectively.

• Security benefits due to more parts of the system being read-only. This is however (somewhat) offset due to lack of the aforementioned UKI support. Hopefully, the well-defined nature of an image-based distro will eventually make more robust system-integrity checks possible.

• Not necessarily exclusively granted through/by 'immutability', but system maintenance has been a joy. Most of the time, it just works anyways. But, if somehow something breaks, then I can easily rollback; either through the terminal if I was able to get inside. Or through the GRUB-menu if the 'broken' deployment doesn't allow me to get inside. Furthermore, you can even pin a confirmed working deployment through sudo ostree admin pin *number* to select the deployment to keep around for longer. I recommend everyone to keep around their first deployment after installing Silverblue, if used wisely it's one of the closest things to a factory reset we've got within the Linux space.

Arguably there's a lot more to talk about, but these are probably the primary benefits.