I first used Linux about 5 years ago (Ubuntu). Since then, I have tried quite a few distros:
Kali Linux (Use as a secondary)
Linux Mint (Used for a while)
Arch Linux (Could not install)
Tails (Use this often)
Qubes OS (Tried it twice, not ready yet)
Fedora (Current main)
For me, it has been incredibly difficult to find a properly privacy oriented Linux distro that also has ease of use. I really enjoy the GNOME desktop environment, and I am most familiar with Debian. My issue with Fedora is the lack of proper sandboxing, and it seems as though Qubes is the only one that really takes care in sandboxing apps.
Apologies if this is the wrong community for this question, I would be happy to move this post somewhere else. I’ve been anonymously viewing this community after the Rexodus, but this is my first time actually creating a post. Thank you!
UPDATE:
Thank you all so much for your feedback! The top recommended distro by far was SecureBlue, an atomic distro, so I will be trying that one. If that doesn’t work, I may try other atomic distros such as Fedora Atomic or Fedora Silverblue (I may have made an error in my understanding of those two, please correct my if I did!). EndeavourOS was also highly recommended, so if I’m not a fan of atomic distros I will be using that. To @leraje@lemmy.blahaj.zone, your suggestion for Linux Mint Debian Edition with GNOME sounds like a dream, so I may use it as a secondary for my laptop. Thank you all again for your help and support, and I hope this helps someone else too!
Arch Linux (Could not install)
That is a very useful tool I overlooked! Thank you!
How does Arch Linux fair as far as privacy and security? It’s private in that it is minimalistic, but that may also mean it lacks in preinstalled security features.
I recommend endeavouros as an intro to arch. It is arch with an installer and sane defaults.
Yet if you are looking for a set it and forget it install arch isn’t for you. Arch is for the tinkerer, for the advanced, for the person who spends a lot of time with the computer and wants to read about everything.
This was Arch a decade ago, it’s just not the case anymore. It’s a stable distro that doesn’t require much tinkering and doesn’t break on its own. It’s right next to Fedora, openSUSE, Ubuntu and everyone wise who is stable, but not Debian stable.
I wouldn’t recommend unless you’re planning to do it yourself. ArchWiki Security
Fedora is fine, you may want to use secureblue or just plain Fedora Atomic/ ublue as Base.
But generally using as many flatpaks as possible and least system packages, and managing filesystem permissions like the guy on Fedora Discuss, this should totally fit your needs.
QubesOS is cool but it tries to solve the problem of insecure software through extreme compartimentalization which is hard to use and extreme on the hardware.
Depends on what level of privacy you want. I’m using Linux Mint Debian Edition with GNOME installed on it and it hits the sweet spot between privacy respecting and Mint’s ease of use.
Have you encountered any issues with your setup? I appreciate your suggestion!
What features do you specifically want? You mentioned sandboxing. Anything else?
I’d say just keep it simple. If you’re comfortable with Debian then stick with that, study up and learn how to harden it. Kali, ParrotOS, Mint, Ubuntu…they’re all just based on Debian with different preinstalled apps and desktop environments. Fedora and Arch are kinda weird and unique, I’m not sure if I’d recommend those for anyone, unless you KNOW that’s what you need. Qubes seems interesting, I’m not familiar with that.
But I’ll point out that ALL of these distros are miles ahead of Windows in terms of privacy. So just by using Mint for a while, you were already ahead of the curve.
I could make a list of all the things I would want in a distro as far as privacy, but a lot of them aren’t as important as sandboxing and (obviously) a system that doesn’t actively make your privacy life hell. Other features would be better clipboard management (Tails and Qubes do a great job with that), no obvious gaps in security/privacy, a system that you don’t have to build yourself, etc.
I think I’ve used Fedora more than I have Mint, but I have been completely Windows free for years now!
From what I understand, wayland is better than x11 for privacy bc of the use of portals (the way apps communicate with the system), and flatpak over distro packages for sandboxing (you can also change the permissions yourself with flatseal).