It’s broken on selinux systems though

FWIW, it actually does work on secureblue; a Fedora Atomic derivative that ships with SELinux enforced.

Gotta have to congratulate the folks over at Zorin OS for this succes. Mad props!

Though, I gotta wonder: Can we expect similar numbers for Linux Mint or Ubuntu? Or, has Zorin OS somehow won the post-W10 SEO-wars? And, if so, how?

is winboat and Winapps basically the same thing?

I’m not very familiar with either of the two. But, at first glance, it does seem so. Thanks for mentioning WinApps!

also that’s definitely not going to have adequate performance, you’d need something like looking glass and that requires a spare gpu or sriov/gvt-g. it’s probably easier to set up with a standalone vm

Unfortunately, I don’t have any personal experience with either of the two. As such, I can’t comment on this. Though, you’re probably right for any gpu-intensive software.

Accompanied with your input, if we look at the distros that are mentioned between Privacy Guides and PrivSec.dev; then Arch Linux, NixOS or a derivative of either of the two seem to be most suitable for you at first glance. As NixOS is rather infamous for its learning curve and you seem to have gotten a liking to CachyOS, I’d recommend a distro under the umbrella of Arch Linux. I suppose it’s rather unfortunate that I’m unaware of a well-maintained Arch-derivative that’s properly hardened; somewhat akin to what secureblue/Kicksecure/nix-mineral offer for Fedora Atomic/Debian/NixOS respectively. Though…, perhaps that’s actually what’s to be expected with Arch Linux 😅; I hope you may find solace at the fact that the ever-so-reliable ArchWiki got your back: https://wiki.archlinux.org/title/Security. Wish ya good luck 😉!

Thoughts on the info here: https://isopenbsdsecu.re/?

I’ve just had plenty of negative experiences with immutable distros that completely undo any customizations I’ve performed (SteamOS mostly)

To be clear, AFAIK this only concerns SteamOS and it’s related to how they’ve chosen to implement immutability. None of the other distros found here (or here) exhibit any such qualities.

I’d switch over completely if I wasn’t dependent on the Adobe CS (another problem I plan to fix in time, I know there are alternatives).

If you insist: WinBoat

I highly value Madaidan’s input on the matter and also their work on projects such as Kicksecure and Whonix. Furthermore, it’s clear that Desktop Linux hasn’t been able to combat all the pain points that were mentioned in the article. However, we’ve definitely come a long way since and there’s lot to be optimistic about; secureblue to name a thriving project.

But, while I appreciate how the article continues to draw awareness to the fact that Desktop Linux isn’t as secure as some like to think, the write-up is ultimately bound to be (severely) outdated at some point. And, perhaps, we might already be past the point in which it does more harm than good…

Anyhow, I’d like to take this opportunity to promote a platform that actually continues to deliver up-to-date articles about security on Linux: https://privsec.dev/posts/linux/