If you read “national security” as a reason anywhere, you can read that as “bullshit”. True for any administration.

After you’ve already established security, you can add obscurity (without compromising security) on top for an even bigger gain in security overall. But you can’t do obscurity in place of security.

Fascism doesn’t want education or truth. It just wants loyalists who follow the fascist doctrine

GrapheneOS is the best mobile OS. Even though the Graphene team has weird habits of communication which might be off-putting for some, the OS technically still is the most secure AND most private mobile OS distribution you can have on any phone. It’s literally at the top, according to many technical and data protection experts. It’s so good that Cellebrite can’t crack it even with physical access, and some police in some country (I think it was Portugal) will assume you’re a criminal for using it, because it’s so secure and private and they can’t stand the thought of someone fully utilizing their personal rights. Plus, it has great documentation and is easy to install. Despite it being so secure and private by default, it still allows you to shoot yourself in the foot by installing the sandboxed Google services and so on, if you really want to. So it can also be used like an off-the-shelf Android, just with some additional hardening and extra protections on top which you benefit from, but the benefit will be much smaller of course when you install and use spyware apps.

Generally, a Samsung phone isn’t great for privacy. Consider getting a Pixel and put GrapheneOS on it. Much better Android baseline. More secure as well.

Any connection to Samsung’s servers is likely non-essential, but do check that OS updates work.

Google Play Services is Google’s main surveillance stack on every commercial Android distribution. It transmits a lot of unique device info to Google, every 20 minutes or so. The minimum data being transmitted is:

Phone #
SIM #
IMEI (world-wide unique device ID)
S/N of your device
WIFI MAC address
Android ID
Mail Address of your logged in Google account
IP address

However, this app might be required for Google Play to function. And also for some other apps. So check those dependency issues. In general, you should prefer using open source apps or any apps which don’t have such stupid dependencies. Some apps merely complain when you don’t have the Play Services app running (by displaying a popup) but still work.

There’s also the issue with Google’s DRM called “Play Integrity”. Some apps use Google’s Play Integrity API to “verify” that the device is an “officially sanctioned Android” and then act like any other Android is “unsafe” and then refuse to work. If you encounter this, be sure to complain to the app developers about this.

If you need the Google Play store but want to block network access for the Play Services app (which you should do), you should probably use the third-party Aurora store app.

About the Ironfox connections: not sure, but the “firefox-settings” hosts from Mozilla sound related to the Firefox Sync feature which syncs your settings/bookmarks/… with Mozilla. If that’s the case it’s also non-essential and can be blocked.

My take on it: most people do have foresight or at least understand the issue, but they still don’t act on it or ignore it as long as the status quo is still convenient enough. So it’s purely a matter of pain and inconvenience. Once enough pain and inconvenience has accumulated, they’re much more ready to make an actual switch. Thankfully, with Microsoft’s services also becoming increasingly enshittified (forced AI chatbot integrations everywhere, even more cloud dependencies, ever more expensive subscriptions, …) there’s also Microsoft shooting itself in the foot a bit in order to accelerate this process. Vile actions from the current US regime are also accelerating the process of course.

Yes. Unfortunately, propaganda, intimidation and many lies and illegal actions from authoritarian regimes do work. The ones in power also don’t need to care if they’re still being supported by the population or not. After they’re in power, they don’t need supporters in the general population anymore, they just need people to be inactive and suck it all up so that they can continue staying in power. As long as there’s no revolt or upcoming election which actually gets rid of the regime and its background helpers, people are simply letting it happen right before their eyes. And so it will happen. And it will get even worse.

Data gathering and analysis is still happening in the background. They just won’t show you these 2 things in the frontend.

His attitude towards humans in general (including Americans) is a disgrace. He only exists to accumulate money and power. Nothing else is of interest to him. The only people who are gladly supporting him are 1) companies and individuals who want more money/power themselves and 2) right-wing extremists who are gullible by definition (pro-authoritarian, want to follow a Führer blindly, hate outsiders of their own group). Hence the strategy to convert conservatives to right-wing extremists via manipulation and propaganda.

Just throw it on the already existing mountain of evidence that he should spend the rest of his life behind bars.

Arch on Desktops&Notebooks, Debian on Servers.

Intelligence in Republicans is a Myth.

KDE Plasma is one of the easiest desktops to use for a user coming from Windows, that’s for sure.

Gnome also has its place. I’ve used it for a few years (up to the Plasma 6 release, where I fully switched to Plasma on Wayland) and I like Gnome in general, its UI is a “modern” mix of the MacOS desktop and a mobile phone UI, whereas Plasma goes the traditional (one might also say boring) Windows desktop look&feel route (although you can also reconfigure Plasma heavily to look and feel however you want, but by default it’s very Windows-like).

Main difference, if you set aside the UI, is that KDE Plasma offers a ton of settings and features (available easily via the GUI), while Gnome intentionally doesn’t - that means to change some things you need to put in more effort in Gnome (use extensions or change settings via dconf editor, or custom CSS files. and so on).

Then there’s the factor of stability - Gnome has always been rock-solid stable for me, while KDE Plasma since 6.x release has been very good but still not rock-solid. I’ve had maybe around 5-7 plasmashell crashes so far during the whole time of using Plasma. Plasma has a recovery feature for this integrated now, so it isn’t as bad, but it’s still not rock-solid. The small price you pay for all the great and many features Plasma has is that it’s (still) slightly less stable, but due to it being able to self-recover most users probably don’t need to worry about it. I’ve had it on Windows as well - whenever the explorer shell crashes, it instantly restarts. You might have noticed this when suddenly the taskbar and everything is shortly gone but then re-appears. It’s kind of the same in Plasma, just that you also get a notification that plasmashell has crashed. I’ve never had any of this happen in several years of Gnome usage.

However, the Gnome devs are doing some weird decisions… they have very strong opinions about things and tend to not agree to things which they should agree to in order to make interoperability with other software easier. There have been a lot of unnecessary discussions about how to handle client-side window decorations, desktop portals, how to implement cerrtain Wayland extensions and things like that and often there are 2 factions at the end: the way Gnome wants to handle it vs. the way everyone else wants to handle it. I don’t like this attitude or selfishness at all from the Gnome project.

But in terms of software and UI quality, I think Gnome definitely has its place. Whether you like its UI or not, is something that every user will see differently. I’d assume that users coming straight from Windows and who maybe also want to continue to use the Windows UI paradigm on Linux will tend to find Gnome a bit alien. That’s understandable. Gnome has its own UI paradigm that doesn’t try to cater to Windows users. So you need to adapt to it, not the other way around. I also never really care that much about what desktop environment I’m using, because I’m doing so much with Emacs, the terminal and the browser, it almost doesn’t matter much what’s “around” that. So take my opinion with a grain of salt - I can probably use any UI paradigm and be fine with it. So maybe I’m not the best person to judge how well a UI is done. But I still wanted to give credit and criticisms where they’re due.

https://reports.exodus-privacy.eu.org/en/reports/gov.whitehouse.app/latest/

As usual: this can be interpteted as Malware. That said, many apps are like this these days: full of trackers and way too many permissions. Most people never know or care.

Mildly interesting: one of.the trackers seems to be related to Huawei.

EDIT: Someone decompiled and analyzed the app in detail: https://blog.thereallo.dev/blog/decompiling-the-white-house-app

Yes. It’s already grown from ~1% to ~6% within the last couple of years. There are several major external factors at play: Valve helping to push gaming on Linux, the continued and increasingly big enshittification of Windows, and the current deranged US regime (resulting in less trust and less users of US-company-produced proprietary operating systems). Remember that Linux or the open source BSD variants are the only (usable/practical) operating systems you can use if you want to achieve digital sovereignty. Plus, it’s also getting even better over time by itself of course (that’s the internal factor).

There was or is a specific bug with earlier Ryzen CPU generations that causes system freezes when the CPU enters the powersaving c-state #6. If that applies to your machine, try the kernel parameter max_cstate=5 for a while. I had one PC build where this 100% resolved the system freezing after several minutes. Note though that this is ~6 year old info. Issue might have been resolved in the meantime. But worth a try probably if you have an older Ryzen CPU.

Yes. It always pains me when I see how tons of open source projects will not leave Github because of the network effect. Yes, it might be inconvenient… even punishing… but it needs to happen, especially after Microsoft bought Github. The ONLY way to counter the network effect (and contribute to meaningful change over time) is by NOT being part of the network effect. By remaining part of it, you’re only helping Microsoft.

“MS Office with its integrated spyware and other anti-features doesn’t meet basic security and data protection requirements so I use LibreOffice”

I still like Arch the most. Since ~22 years now.

Mint or Fedora(KDE) are great choices. Kubuntu, PopOS or OpenSuSE might also be suitable for beginners. Stay away from Arch-based distributions until you are at least a bit more experienced.

Intel (anything) works without problems on Linux (in fact, Intel is among the most Linux-supportive companies out there and most or all of their drivers are open source and part of the kernel, as it should be in the Linux world).

Nvidia GPUs used to be problematic in the past, it’s better now, still not as great as AMD GPUs are on Linux (they’re literally plug and play these days) but I think when going with the distro mentioned above it’s going to be just as easy Just make sure to enable support for NVidia drivers or “enable 3rd party drivers/repositories” (you’ll be asked during setup) so that those distributions will also install those slightly non-standard Nvidia packages which they might not do otherwise for “purity” reasons.