It seems very powerful and secure. Could any experienced users share pros and cons based on personal experience? What are the must-have distroboxes to best complement Silverblue?
t. archfag for 7 years
Is this the distro endgame?
Jose Powell
Carson Hall
it has aero? if not then into the trash it goes
Justin Lopez
It's a gimmick, Silverblue isn't no more secure than your average Linux distro
madaidans-insecurities.github.io
Carter Howard
It's trash.
>What are the must-have distroboxes to best complement Silverblue?
This statement alone should tell you all you need to know. A distro that needs to be "complemented" with other distros to become usable is not worth using.
Zachary Sanchez
It's good but you need to edit your fstab with extreme care. In fact, I wouldn't touch it and use systemd .automount files instead.
It's really cool, though. I haven't figured out how to easily reproduce a build. I think that's how distros like this will be used in the future.
Ayden Wood
>I haven't figured out how to easily reproduce a build
This distro does not cover that aspect at all. It's still RPM in the back, so it's exactly as annoying to use and exactly as irreproducible as rpmbuild. All Silverblue does is automatically install a list of prebuilt packages, snapshot the result, and then you download the snapshot from their servers.
Robert Murphy
silverblue is shit but that article is written by a fucking retard
Joshua Peterson
But you always have distros that are just werks for specific tasks, while others are a pain in the ass to work with. Machile Learning packages, at least a couple of years ago, was a good example of that. Silverblue just embraces the immutable OS philosophy and has distrobox working out of the box to fill in the completeness that I assume no single distro really has.
Carson Gutierrez
No, that would be Guix
web.archive.org
Ian Thompson
NixOS has the potential for that completeness, because it doesn't require you to think in terms of distros. You don't want to install a whole distro for a specific task. You want to install a package. Nix gives you that flexibility.
Nolan Barnes
Thanks user, I'll install Nix on Silverblue.
Aiden Allen
can you use zfs on it?
Cameron Watson
You'll have a hard time with that because of Silverblue's inflexible design. You can install Nix just fine on any other distro.
Parker White
I think there's a way to create your own branch and rebase on that. It would be a lot of work and you'd still have to install vanilla Silverblue.
James Brooks
Good for containers and also installing it on your parents' computers so they can't fuck anything up.
Jordan Morgan
>can't refute anything
Eli Cox
Of course there is, but one, it's a pain in the ass, and two, it still doesn't help with reproducibility in any way. Silverblue is effectively an efficient way to download a rootfs. That in itself can be repeated with the same result, but you're just downloading a file. Downloading a file twice and having it be the same file is not something special. Silverblue makes it easier to work with the golden image approach that was created out of necessity because of Fedora's lack of reproducibility, but it doesn't improve reproducibility itself. It's essentially a coping mechanism. The work of Silverblue developers isn't useless, but they shouldn't kid themselves into thinking that they are doing anything to improve reproducibility. They are building an elaborate contraption to shove the problem under the carpet.
Nathan Murphy
Why is it good for containers?
Parker Thompson
>pros and cons based on personal experience?
Pros:
Won't break
That's it lol
Cons: /usr is immutable.
You are supposed to use toolbox for cli software but its an hassle to use
Flatpaks are for the GUI part and they are fine.
imo its the perfect for say windows replacement for offices/etc
Not the silverblue part but ostree part
For home usage nix should be better
ostreedev.github.io
Blake Rogers
madaidan is like every other autist
technically right but in the most unhelpful way possible
yes, sandboxing and locking down the system makes it more secure against third-party attackers
and yes, linux is not very good at that compared to other systems
but if your privacy threat model includes the companies who made your operating system (which it will if you want it to mean anything), his recommendations are the worst options you could choose
>windows 10 s
>chromeos
>macos
for people who actually want a right to privacy, all the security these systems provide are completely nullified by the fact that they phone home with your data
they secure you against malicious third-parties by compromising you against a potentially malicious first-party
at the moment the bsds (specifically freebsd and openbsd) are the best regular systems at respecting both by default
>fully open source
>heavily integrated stacks
>sandboxing built-in
>well-tested for decades
Aaron Cruz
Immutable root is the future of the desktop. macOS has done it for years now. iOS, Android, ChromeOS all do it. Windows 10X was Microsoft's attempt until marketing forced them to cancel it and shit out Windows 11 instead, but it's definitely coming.
Impossible to brick with a bad update, nearly impossible for malware to implant itself, and if it does, just reimage (usually just a matter of rebooting). Better for consumers, IT departments, etc. Basically gonna be required for any serious deployment. So if Linux on the desktop wants to expand beyond ChromeOS they gotta figure it out.
Jordan Gonzalez
There's no sandboxing on OpenBSD.
Gabriel Peterson
pledge and unveil