lemmyng

Are you on a convertible laptop? Is Fedora perhaps thinking you’re on keyboard-less mode? Is there an OSD keyboard enabled that may be overriding your input?

“BuT eNgAgEmEnt WeNt Up!”

I have my SD docked into a 4k monitor most of the time, and I can tell you with certainty that some games will struggle at 4k on the SD. You can still use the 4k monitor for them, just play at a lower resolution.

CUPS is installed on the majority of desktop systems. One of the listed CVEs indicates that port 631 is by default open to the local network, so if you connect to any shared network (public WiFi, work/school network, even your home network if another compromised device gets connected to it) you’re exposed. Or a browser flaw or other vulnerability could be exploited to forward a packet to that port.

In other words: While access to port 631 is required first, the severity of the vulnerability lies in how damn easy it is to take over a system after that. And the system can be re-compromised any time you print something, making this a persistent vector.

I don’t have a Fedora workstation in front of me right now, but it memory serves me right there’s a “default applications” or similar menu in Gnome’s settings.

While LDAP/Samba are the canonical answers for “what is the AD equivalent for Linux”, I would also like to point out that you could save yourself the time to maintain this by using an AD SaaS solution like Jumpcloud or similar that supports Linux. Given that you said it’s for a church with about 10 computers, there might be a discounted or even free option (eg under the nonprofit category).

When I was younger and more naïve, I used to think a case was useless. I kept my phones in my pocket most of the time, and didn’t feel particularly clumsy or reckless. Then I got a phone that happened to have a glass back, and it broke not because I fumbled it, but because it slid out of my pocket onto time floor while I was sitting down. Glass backs on phones are bullshit.

rapid mitosis

As in you are seeing multiple boot entries? It’s likely one entry per kernel version that you have installed. It doesn’t happen often these days any more, but in some situations it’s handy to be able to revert to a previous kernel if for example third party modules break.

Not sure about erasing all of it, but it is (or was) certainly possible to delete enough of it to brick a motherboard https://www.phoronix.com/news/UEFI-rm-root-directory

Not sure what you are talking about. Paragraph 1 has

The malware is delivered through a fake Google Chrome update that is shown while using the web browser.

and the article makes it pretty clear after that that the user is tricked into installing the fake apk.

I don’t know where you got the idea that I’m arguing that old versions don’t get new vulnerabilities. I’m saying that just because a CVE exists it does not necessarily make a system immediately vulnerable, because many CVEs rely on theoretical scenarios or specific attack vectors that are not exploitable in a hardened system or that have limited impact.

The fact that you think it’s not possible means that you’re not familiar with CVSS scores, which every CVE includes and which are widely used in regulated fields.

And if you think that always updating to the latest version keeps you safe then you’ve forgotten about the recent xz backdoor.

For me Hyperion ended up giving me the closest out of the box experience to what I wanted.

Just because it has a CVE number doesn’t mean it’s exploitable. Of the 800 CVEs, which ones are in the KEV catalogue? What are the attack vectors? What mitigations are available?

You did a recursive chown or chmod, didn’t you.

Bazzite, as a gaming-first distribution, makes some choices that are acceptable for such a platform, but that I believe are unacceptable in a secure development environment. This is why I wrote “not ideal” instead of “bad”. If you don’t care about security then it’s perfectly cromulent. But I value security, so I would not recommend it.

Bazzite is a good HTPC or living room gaming distro. It is not an ideal all purpose desktop distro, just like a Steam Deck is not an ideal all purpose desktop system.

If you want a Bazzite-like experience that is better suited for the desktop then use Fedora Silverblue, which is what Bazzite/ublue builds upon.

My mistake. I read your post as you using VMWare Workstation on Fedora, not the other way around.

Your other options are Virtual Box by Oracle or head down the Xen path.

Or, since OP is on Linux, a native KVM option like virt-manager or boxes.

Gpaste can do it. The out of the box experience is a bit hit and miss, but it’s plenty configurable and reliable once set up to your liking.