Yeah, I just meant people are used to decades of using meaningful usernames. Having to use a cryptographic key has traditionally made it very difficult to get enough people to adopt to make it worth adopting yourself as a technologically savvy person. I never would have used Facebook in a million years if it wasn't for the fact that it was the only place I could get in touch with many people. Having to build your networks in-person is tedious for many people and sharing the codes securely through other means is cumbersome if you don't have an existing method for sharing. Just like HTTPS needs several layers to make it work and still relies on an untrustworthy and corruptible thing like DNS to verify the destination and it's keys are the thing you're expecting to connect to. There's no secure way to share the route to your device electronically in a user-accountless system with no secure, trusted middleman translating names to addresses unless you do it in-person.

Oh that irony would be painful.

There's also a bunch of controversy around their premium features and it supposedly bricking devices it deems were pirated licenses.

Lol good luck but I wouldn't recommend it as your daily os. Qubes is for those who have got a nation state on their back or something like that. For most people, default fedora is more than enough. (see https://www.privacyguides.org/en/os/qubes-overview/ and https://www.privacyguides.org/en/desktop/)

Not the one you asked, but please allow me give my take on the matter. Do you know if you can still do everything with it? Like atomic already has its own limitations and quirks. I can imagine there are bigger limitations with this. Being derived from Fedora Atomic, already comes with its own set of limitations; like being limited in which kernel mods you can make use of (without reinventing the wheel), or how UKI is unsupported or how you should probably create your own image if you want to populate /usr. You can't even install software from any repository; e.g. installing the ProtonVPN RPM has been hit or miss for me. And, on top of this, secureblue's hardening does (strictly) limit this even further. Most impactful, so far, would be the inability to use sudo or anything like it. Instead, run0 is suggested. I'm 100% sure that run0 is better. However, I've had at least 1 occasion on which the software doesn't know how to properly interact in this setting. Ultimately, I'd have to give the blame on the software that doesn't properly support run0. And, perhaps, you could help address the issue by opening a bug report related to it. But it's definitely something to keep in mind. Finally, note on first setup you're walked through the many different additional hardening that can be reverted based on your needs. Just be aware of that fact. Like can you install driver-level stuff like tablet drivers Maybe. Depends on what exactly it is. GPU/CPU control I have. udev rules Shouldn't be a problem either. etc… I guess I don’t really know the implications of the extra hardening. If you're interested, I suppose the best course of action would be to find a secondary device of yours and setup it to your heart's content with secureblue. Whenever you face a roadblock, consider paying a visit to their discord server for support; they've been a great help so far. If, at some point, you find something you absolutely can't do, then you'd have to make up your mind on what you deem more important. Wish ya the best of luck!

How does it compare to qubes os

This is Sweden, they're used to the government wiping their assets.

But the Rubicon was crossed so... ¯_(ツ)_/¯

Idk it's more that you're a rambling idiot

according to its description it should work by selecting the file through the documents app. Formerly that was always disabled on xiaomi phones on every reboot if you enabled it

Totally agree. I would definitely not kick her out of bed for eating crackers.

This is interesting, I will do a revision on my post. Thanks for sharing this.

Yeah, I know that - I am myself in a situation where we need increasingly obfuscated evasion solutions. However, my issue is not in that it developed such a proxy - but rather, that it doesn't give an option to use a different one. For example, I have my proxy set up - so why does Signal need its own separate proxy rather than using the one everything else already uses? Why can't it use Tor without torifying the whole device's traffic? Not to mention that dedicated solutions (XRay and such) are focused on censorship evasion while for Signal stealthy proxies are comparatively more of an afterthought. So there is a chance it wouldn't be able to evolve fast enough to keep up with the censors. P.S. I think in Iran, there was also a bigger issue - the SMS codes for registration just didn't arrive.

The current government promised they would be "tough on crime" but have been largely unsuccessful in reducing gang related criminality. Now they are trying to find new tools to get to the leaders of those gangs. Sadly, they don't understand technology.