I was looking for such a guide but could not find it back then.
Which may be overcomplex but it is complete and lots of things where not intuitive at all.
As I said, you could easily automate this step, instead of making it that manual. Or course I can do that, but why need to, if a sudo apt distro-upgrade
would do it?
Its overcomplex. For sure I could get used to it and maybe this is the way to go.
But you could wrap this tedious process in a function.
Fedora has a distro upgrade command (that totally sucks but okay) since many years, while on Debian I needed to follow some random Guide to get on the hyped Debian 12.
Podman runs without a daemon which for some reason makes podman compose
an a bit tricky replacement for docker compose
.
But for a single purpose, why not just install nextcloud as a system package via layering? I think that should be pretty secure through SELinux and would be the easiest choice.
Other problems with coreOS:
pkexec cat /etc/systemd/system/nightly-reboot.service <<EOF
[Unit]
Description=Update rpm-ostree and reboot
After=network.target
[Service]
Type=oneshot
ExecStart=/usr/bin/rpm-ostree --reboot update
[Timer]
OnCalendar=daily
AccuracySec=1h
Persistent=true
Unit=rpm-ostree-update.service
[Install]
WantedBy=multi-user.target
EOF
But I would honestly try it. Maybe give secureblue server a try, should be more similar to your desktop than coreOS (which seems to be made for wide deployments)
Okay, they are probably offline install ISOs with all the software included right?
On Linux its also a little different, as uninstalling “bloat” is just one command or GUI button. On Windows you need shady external software for that and it doesnt feel like its meant to be at all, with all those cmd windows popping up etc (BCU)
Yeah I know the projects. GrapheneOS hates F-Droid which is annoying, but I am 100% sure its the more secure and complete OS. DivestOS probably has more user-facing features.
I think every Custom ROM should build on top of GrapheneOS, extend the device list (with worse security but only for some threat models) and add better apps.
Here you get the GrapheneOS apps (very few): https://github.com/GrapheneOS/Apps/releases
Yeah I did that too. Mulch or Vanadium, I would recommend Vanadium. Bromite is dead. Cromite maybe, but really just use Vanadium its the most degoogled and secure one.
But apart from that, the developer options make no sense if there is no way to actually install one without root.
Also, openwebview replaces the installed one, doesnt it?
They will strip out the DRM part, maybe. GrapheneOS, other than even Firefox or any Linux Distro, has many DRM packages installed. Widevine and lots of others.
So it may be that they dont even remove it from the Vanadium Webview. But if they do, Apps may break as the Developers looove the extra control. And then GrapheneOS needs to do annoying work again, to for example have a sandboxed Webview-DRM app that can be enabled per-App.
Very true. In germany we had “Ytitty”, a group of young guys doing music parodies and comedy stuff. They went more and more professional and less funny, not realizing thats not how comedy works.
LOL
I have no damn idea as I see Firefox as a Platform.
Whats also awesome is, that SiFives devices run Coreboot out of the box.
I own a Thinkpad T430 and soon a Clevo NV41 and both are also Coreboot compatible. Most excited about the new hardware, even though it will need a fully blobbed Coreboot… SiFive on the other hand is probably fully FOSS?? This is crazy!
Tor, i2p, ipfs maybe