DeGoogle doesn’t make sense if keeping google services and google play (this provides services any ways). For example grapheneOS as best as it is for security is not a DeGoogle experience. calyxOS would have been an option but it’s currently out of maintenance. LineageOS with f-droid basic, apkupdater (apkpure mirror) if needing proprietary stuff and maybe aurora store if apkpure doesn’t find something or you distrust it (it’ll be connecting to google play), and for them, if needing google push notifications (most of them do) and unavoidable services then microG.

Some FLOSS apps requiring push notifications allow to use unified push btw, like jami and davdroid (davx5), molly (signal client, though I no longer use signal), so no need for google push notifications, and for email imap has supported it’s own push notifications mechanism for way long (fairemail, thunderbird, etc). It’s on proprietary apps which mostly that’s not the case… Installing from official f-droid I believe gets rid of proprietary google stuff, including dependencies on google services library…

agreed, I though I ammended my original post about it.

apparmor comes with several profiles, and if in your distro it doesn’t include one for librewolf, you can use the firefox one. And if there’s no available one and you would be interested in combine it with firejail then most probably firejail will come with with a profile for firefox or librewolf and usually with support for apparmor. Regardless of the distros, the arch wiki can guide you with apparmor and firejail. I recommend becoming familiar with both. Another option if there’s no profile on your distro is to look into another distro’s profile. ubuntu used include some software with apparmor out of the box so perhaps it’s a good source of profiles…

Also in this same community there’s an old post precisely about what you’re asking for, though it’s a bit dated, you may want to scroll for some time until getting to it.

Edit:

Firejail is insecure, my bad. Better to use bubblewrap (I didn’t know about bubblejail). The thing is that firejail offers profiles combined with apparmor which might have solved the lack of apparmor profiles. For my personal purposes I hope to take a look at bubblejail to have an easier way to do sandboxing. You can see the arch wiki bubblewrap examples to notice how bubblewrap doesn’t help with apparmor profiles though. According to the arch wiki for bubblejail or the GH page for bubblejail profiles are used and can easily be created, however I have no idea of the interaction with apparmor, and if as with firejail such profiles include apparmor stuff, but intuitively I guess it doesn’t.

Going back to apparmor, which is MAC enforcement, if no profiles available on your distro for librewolf neither firefox, then looking at other distros is OK, and also one can create profiles as well as one can also modify existent or available ones. See for example the arch wiki for apparmor.

Papers or Zathura (+ required plugin)

apkupdater installing from apkpure?

I’m wondering about LOS re-locking on particular devices. DivestOS used to allow that, not sure if only on pixels, but if divestOS which was based on LOS could, I don’t see how that code can not be ported over upstream LOS. Have anyone seen an effort similar to divestOS in this regard?

There’s an AUR open-tv package for Arch/Artix/…, and there’s even an AUR open-tv-bin version, but I prefer looking at the build recipes if available, and if not using Arch/Artix/… one can read through the PKGBUILD and see how it builds.

available on AUR for Arch and derivatires

The AUR PKGBUILD shows a pretty simple recipe:

build() {
  arch-meson "${pkgname}-${pkgver//+/-}" build
  meson compile -C build
}

package() {
  meson install -C build --destdir "${pkgdir}"
  # permission fix
  chmod 755 "${pkgdir}/usr/bin/ascii-draw"
}

I’ve been seeing arch-meson often used, but haven’t explored what it does. Some day…

Though it’s way more fun to use text specification, like the one referenced by @fratermus@lemmy.sdf.org

maybe, he mentioned stacked mode on a tiling compositor, which is valid, but that’s not a thing on stacking compositors… BTW, the stack mode on sway doesn’t mean it turns into a stacking compositor, rather it means tabbed mode with the tabs stacked vertically. But the OP knows better.

You might try tabbed mode instead of stacking mode. It’s great, as mentioned in some comment I made, I’m not a tiling guide, but the tabbed mode on sway is great. I would guess it’s available on hyprland since it borrows some concepts from sway. However if you find a lot of trouble on hyprland enabling it (I guess you shouldn’t) you might try sway. Beware you need exceptions because otherwise everything shows up maximized, but that’s not hard byt reading the man pages, compositor documentation, and looking around on the web. BTW, on sway this global config gives tabbed mode on all workspaces: workspace_layout tabbed and of course you can chenge it to stacking, or tiling whenever you want on any workspace…

I’m not a tiling guy, and the tabbed mode on sway seems to me like the best I’ve used. I believe it’s a much better experience than stacking compositors by a lot. Having a tab bar, and everything maximized to it (except what I consider is better off floating) is the best I’ve experienced. Stacking mode is the same just that is uses too much space by stacking the tabs, so I really don’t like stacking mode. So sway tabbed mode, in combination with a tiling concept of a workspace per particular objective (I use 10) and a simple bar (yamber) has no alternative on the stacking spectrum of compositors.

BTW, if going with a stacking compositor, I recommend labwc instead. I found a smoother and way more stable experience than wayfire (some functionality stops working often like sunset functionality, and usually way behind on wlroots support, not a take on wayfire devs, just that I find it more unstable than labwc).

Of course I’m biased towards less eye candy, though I still appreciate the equivalent to basic picom/compton on the Xorg world, which is the norm on any wayland compositor AFAIK.

I guess there was an attempt to move away from the email flow, to allow more people to contribute (I read that was part of the motivation), perhaps that made sourcehut (although it’s in their plan, it hadn’t become their highest priority) not an option, however both can be self hosted (that’s what I would have expected from an organization as the Guix one, so that there’s no dependency on a cloud service, as good as it might be), and both have really good TOS and are non profit. But cloud services are still something its users/clients do not really own. Perhaps as I understood, savannah will still be used as a mirror, but not just temporally, rather for good, so that if something happens on the cloud, there’s plan B available… That’s why for such big and important project I would have preferred a self hosted service. But oh well, I’m not part of the decision, and not an user yet, hopefully to become one later on when getting some minimal understanding of both guile and guix configuration (still guile but I believe simpler), because no matter the distro I always have to write and maintain a few packages myself. Hopefully at some point doesn’t become never having the time to do so, hehe.

So all in all yes, the two best cloud options by far, but I’m surprised a Guix instance was not chosen, not sure if even considered.

It would have been better to self host forgejo, rather than trusting a cloud git service using forgejo. But to be honest, its TOS, as well as the sourcehut’s TOS which I even like it better, sound way better than GH’s…

I’m curious about which programs if you can share. I write few bash scripts which used to call sudo, and I replace sudo with doas in those. And in case of muscular memory I also added a bash alias so that if by mistake calling sudo in reality I’d be calling doas. So far no issues. O course I don’t use fancy args, and what I really needed from sudo I used to include it in /etc/sudoers and now on /etc/doas.conf, and I believe I couldn’t include a couple of options but they were not critical since I’ve lived without them so far. And it’s weird to find actual software that requires sudo, perhaps proprietary software. One can actually live without sudo and without doas, as long as there’s still su.

Not judging, rather curious, actually I’ve met several guys who write scripts which would benefit from using sudo/doas, but they claim better call the scripts through sudo/doas rather than adding them as dependencies.

A way smaller alternative therefore less prompt to vulnerabilities is OpenDoas found on Arch/Artix/… and other distros. From the GH project:

doas is a minimal replacement for the venerable sudo. It was initially written by Ted Unangst of the OpenBSD project to provide 95% of the features of sudo with a fraction of the codebase.

Jami on desktop, not on phones yet:

https://jami.net/eleutheria

Available only for desktop users for now, the new Push-to-talk feature offers a new effortless way to communicate: simply press a button for hands-free, instant, and convenient audio messaging. It’s like in the olden days of gaming when gamers would key bind the Push to talk feature to be able to talk when necessary.

So jami all the way, 🙂

Guix is source base rolling release if you plan to keep it up to date weekly, so I don’t know why you feel it so distant from Gentoo. Binaries updates are still rolling released but their pace is slower.

Well, before wayland I always used fluxbox (eventually with picom compositor, which previously was compton). Then now on wayland I’m using sway with fuzzel, yambar and others.

I’ve always felt both gnome and kde, as well as most other DEs really bloated. Gnome used to be more stable on wayland, and as of Today with better support for nvidia AFAIK, but KDE is quickly catching up.

Not sure why the hate on gnome (and I guess on GTK as well). It doesn’t offer all the customization by default, but you can get it through extensions while available. But on KDE one really needs to see a pletora of dependencies each time one adds a simple module or application. Both are improving gradually to become less intense on resources being KDE more advanced on that.

But hey, both are bloated compared to non full DE compositors such as sway or labwc. BTW I use sway with tabbed mode (not actually tiling) and some tweaks, and I prefer that over stacking compositors, but if wanting one labwc is pretty cool.

On X11 there’s a huge amount of window managers plus compositors plus several other applications which altogether can give a similar sense to a DE but way less intense on resources, and for sure way less bloated. To me DEs are overrated to answer your title, but perhaps that’s just me, :)

I know most don’t care. I initially stated most people don’t agree with me. This is just my take on universal packages in general. I really like and appreciate the typical shared libraries native to most distros. It’s OK we disagree, I only hope we don’t end up with empty shells with systemd and everything else on app stores…