If you don't process any user data beyond what is technologically required to make the website work, you don't need to inform the user about it.
None of this puts the user out of control; they're free to add the Flathub repository should they wish to do so.
He
I hate to be that guy but OP gave no indication of their gender. English has the luxury of having a "natural" neutral pronoun; please just use that.
which these suggested Fedora Spins are designed to integrate with as tightly as possible
Could you explain what exactly this "tight integration" pertains? AFAIK these are just regular old global-state distros but with read-only snapshotting for said global state (RPM-ostree, "immutable").
Read-only global system configuration state in pretty much requires usage of Flatpak and the like for user-level package application management because you aren't supposed to modify the global system state to do so but that's about the extent that I know such distros interact with Flatpak etc.
Bazzite is completely the opposite of an OS designed to run one app at once, which means you haven’t tried it before rubbishing it as a suggestion.
That is their one and only stated goal: Run games.
I don't know about you but I typically only run one game at a time and have a hard time imagining how any gaming-focused distro would do it any other way besides running basic utilities in the background (i.e. comms software.).
Obviously you can use it to do non-gaming stuff too but at that point it's just a regular old distro with read-only system state. You can install Flatpak, distrobox etc. on distros that have mutable system state too for that matter.
Could you point out the specific concrete things Bazzite does to improve separation between applications beyond the sandboxing tools that are available to any distribution?
It's true that I haven't used Bazzite; I have no use for imperative global state distributions and am capable of applying modifications useful for gaming on my own. It's not like I haven't done my research though.
"No your honour, we do not offer users any patented software, we merely ship a system which directs users to this other totally unrelated entity that we are fully aware ships patented software." will not hold up in court.
I also imagine RH would simply like control over the repository content they offer to users by default. Flathub acts more like a 3rd party user repository than a "proper" distro.
I don't assume you to be stupid, so lack of information is the most likely explanation for not knowing what "it" refers to here.
Read the linked issue first perhaps.
Offering patented software would open Fedora (a RedHat product mind you) up to legal issues in places that know software patents (primarily the U.S.).
There is no distribution that does what you're looking for. All the ones recommended by others in this thread are just generic distributions that do nothing special to separate user applications and I have no idea why they saw fit to mention them at all.
The best recommendation here is Qubes but that's arguably not a distro but rather its own operating system that can then run some instances of distros inside of it with strong separation between those units.
The only thing that somewhat goes the direction you want is Flatpak but it's not anywhere close to Androids really quite solid app separation scheme.
The reality of it is that most Linux desktop apps are made with the assumption that they are permitted to access every resource the user has access to with no differentiation; your SSH or GPG private keys are in the same category as the app's config file.
Standard APIs to manage permissions in a more fine-grained manner are slowly being worked on (primarily by the flatpak community IME) but it's slow and mostly focused on container stuff which I'm not convinced is the way forward. There does not appear to be any strong effort towards creating a resource access control design that's anywhere near as good as Android's in any case though.
The closest thing we have is systemd hardening for system components but that's obviously not relevant for desktop apps. It's also (IMHO) inherently flawed due to using a blocklist approach rather than an allow-list one. It's also quite rigid in what resources it controls.
I'm not convinced any of the existing technologies we have right now is fit for a modern user-facing system.
Here's what I think we ought to have:
- A method to identify applications at runtime (e.g. to tell apart your browser from your terminal and your editor at runtime)
- A generic extensible way to declare resources to which access should be controlled within a single user context (i.e. some partition of your home filesystem or some device that your user generally has access to such as your camera)
- A user-configurable mapping between resources and applications; enforced by kernel-level generic mechanisms
No need for any containers here for any of this; they're a crutch for poor legacy distro design that relies on global state. I don't see a need for breaking the entire UNIX process model by unsharing all resources and then passing in some of them through by overly complex methods either.
Eventhough they're quite simple and effective, I'm not convinced UNIX users are a good primitive to use for application identification like Android does it because that implies user data file ownership needs to be managed by some separate component rather than the standard IO operations that any Linux apps ever uses for everything.
I think this should instead be achieved using cgroups instead which are the single most important invention in operating systems that you can actually use today since UNIX IMHO.
The missing parts are therefore a standard for resource declaration and a standard and mechanism to assign them to applications (identified via cgroup).
I haven't done much research into whether these exist or how they could me made to exist.
That is not relevant here in any way. That's a distro made to easily run one app at a time without really caring about data security w.r.t. that app.
On the one hand yes but on the other hand this would also kind of set wrong incentives: to use Kagi search less because you'd need to pay more.
That's not an incentive they or you would want.
I think what I'd like is how my mobile carrier handles their data limits: It's not an entirely fair comparison because in that case, contrary to Kagi, there is no real cost associated with my degree of usage of the service, making them entirely arbitrary and unnecessary but besides that the unused data rolls over to the next month and that's something Kagi could mirror.
I hover around 600-1000 searches per month but sometimes exceed 1000. If I could pay for 1000/month and accumulate a little buffer in the months where I search less, that would work for me. Though perhaps I'd still want to just simply pay for unlimited usage for peace of mind.
This sounds like FUD. Do you have a source for that?
As a paying member, I know that they started charging (and presumably transferring) VAT last year.
Before that, they claimed they were simply too insignificant to even be eligible for VAT.
I looked it up and there appears to be an exception for such cases where VAT is charged in the company's jurisdiction rather that the customer's (it's usually the other way around) until you reach 10000€ annual turnover. Information on this is extremely intransparent however, so this might be wrong.
295
Linus Torvalds Throws Down The Hammer: Extensible Scheduler "sched_ext" In Linux 6.11
(www.phoronix.com)
258
Former Nouveau Lead Developer Joins NVIDIA, Continues Working On Open-Source Driver
(www.phoronix.com)
1
Features
-
We continue enhancing our search experience with bangs. Check the shield menu to see if a website has a corresponding bang. #3410 @frereit
-
We've upgraded the FastGPT, and Research Assistant (Fast+Expert) with the latest models to enhance performance:
- FastGPT -> Claude 3 Haiku
- Research Assistant, Fast -> Claude 3 Haiku
- Research Assistant, Expert -> Claude 3 Sonnet
-
These are also available in Chat mode which allows full access to a range of models like Claude 3 Opus, GPT-4 and Mistral Large [Please note, Kagi Assistant is currently in closed beta and is exclusively accessible to subscribers of the Ultimate plan]
-
We now allow the community to see and translate the trigger phrases for widgets that utilize them, such as the weather and calculator widgets. Learn more about how to contribute translations in our help page. #2506 @cempack
Improvements and bug fixes
- Show colour picker when searching for "colour picker" or "color picker" #3370 @httpjames
- Clock Widget (ie, checking time in another time zone) initially shows PM instead of AM #3533 @mackid1993
- Ultimate-exclusive bangs not working on starter plan #3551 @emarforio
- Timer doesn't count time correctly #3436 @__rej__
- The enter key ignores the character selection state when using Chinese IME #3606 @morningdip
- Unable to upload items between 8mb and 16mb #3593 @cakeboss
- Search results have no title Firefox Android #3586 @ray
- Discussion cards #3519 @Dumb
- News Snippet cuts off menu #3542 @xrendan
- Show that a bang is available in the info field of a result #3410 @frereit
- Search ignoring pre-set date filter #3417 @travior
- Check Listen Notes API integration #3163 @matteoscopel
- Quick answer does not display footnotes correctly #3637 @bebowilson
- Add bang country for Indonesia #3515 @rourguic
- Make stats subpages shareable #3452 @Value7609
- Updating a lens' bang causes the server to crash with 502 Server Error #3601 @httpjames
- Assistant is still capping characters to 7k #3547 @httpjames
- AI Assistant regenerates answer on tab restore/reopen when called from bang #3569 @emarforio
- Quick answer button slightly misaligned on mobile #3429 @sefidel
- Stop overriding the browser’s scroll bars with custom CSS #3420 @David
- Using the bang !fast on Firefox iOS just gives me an emtpy window #3597 @lou
- Reddit and Hackernews backlinks only (?) work on us-central #3277 @nilsherzig
- Bangs in Image / Video / News / Podcast / Maps Search do not redirect. #2929 @Syx
- Lenses are not activated for research #3317 @tkataja
- Quick answer breaks when the query contains html tags #3614 @ys256
- Research Expert Mode "forgets" Citations #3612 @tschoesi
- Research Assistant cannot summarize GitHub issues URLs correctly (but it can as a PDF) #3581 @yokoffing
- Missing citations in fastgpt / quickanswer again #3625 @truethomas
- Quick answer words end with numbers (without links to sources) #3628 @bert
- Blocked sites showing up in "Quick Peek" results #3477 @n6h6
- "Sorry, a problem occurred while processing your request." when using the bang "!expert" #3306 @lou
view more: next ›
There's also the option of just leaving an offline disk at someone's and visiting them regularly to update the backup.
Having an entirely offline copy also protects you/mitigates against a few additional hazards.