my daily drive distro
-
my daily drive distro
-
System shared this topic on
-
my daily drive distro
Do you know if you can still do everything with it? Like atomic already has its own limitations and quirks. I can imagine there are bigger limitations with this.
Like can you install driver-level stuff like tablet drivers, GPU/CPU control, udev rules, etc... I guess I don't really know the implications of the extra hardening.
-
Do you know if you can still do everything with it? Like atomic already has its own limitations and quirks. I can imagine there are bigger limitations with this.
Like can you install driver-level stuff like tablet drivers, GPU/CPU control, udev rules, etc... I guess I don't really know the implications of the extra hardening.
I use secureblue as host for my virtual machines
-
Do you know if you can still do everything with it? Like atomic already has its own limitations and quirks. I can imagine there are bigger limitations with this.
Like can you install driver-level stuff like tablet drivers, GPU/CPU control, udev rules, etc... I guess I don't really know the implications of the extra hardening.
Not the one you asked, but please allow me give my take on the matter.
Do you know if you can still do everything with it? Like atomic already has its own limitations and quirks. I can imagine there are bigger limitations with this.
Being derived from Fedora Atomic, already comes with its own set of limitations; like being limited in which kernel mods you can make use of (without reinventing the wheel), or how UKI is unsupported or how you should probably create your own image if you want to populate
/usr. You can't even install software from any repository; e.g. installing the ProtonVPN RPM has been hit or miss for me.And, on top of this, secureblue's hardening does (strictly) limit this even further. Most impactful, so far, would be the inability to use
sudoor anything like it. Instead,run0is suggested. I'm 100% sure that run0 is better. However, I've had at least 1 occasion on which the software doesn't know how to properly interact in this setting. Ultimately, I'd have to give the blame on the software that doesn't properly supportrun0. And, perhaps, you could help address the issue by opening a bug report related to it. But it's definitely something to keep in mind.Finally, note on first setup you're walked through the many different additional hardening that can be reverted based on your needs. Just be aware of that fact.
Like can you install driver-level stuff like tablet drivers
Maybe. Depends on what exactly it is.
GPU/CPU control
I have.
udev rules
Shouldn't be a problem either.
etc… I guess I don’t really know the implications of the extra hardening.
If you're interested, I suppose the best course of action would be to find a secondary device of yours and setup it to your heart's content with secureblue. Whenever you face a roadblock, consider paying a visit to their discord server for support; they've been a great help so far. If, at some point, you find something you absolutely can't do, then you'd have to make up your mind on what you deem more important. Wish ya the best of luck!
-
System shared this topic on
