Comment by M95D
3 months ago
I do use Gentoo currently, but it's so very hard to keep programs from monitoring what happens in the system via dbus and the only firewall for outgoing connections, OpenSnitch, hard-depends on it. Running every major program in a container is NOT a solution.
So far Linus has kept these things outside the kernel, but he won't live forever.
This is why my daily driver is Qubes OS.
OMG, that's even worse than containers.
By which measure?
2 replies →