It does not matter in the sense of distro hopping because most people are hopping without a goal, or if they have a goal the goal is possible with the current solution too.

But in this case its different. You have a goal and security has its requirements. If you want to protect against supply chain attacks, using Arch Linux would be a risk for example.

It always depends. Your goal is security and you found out about secureblue. Alone with that you are far ahead of elses people who only hop distros for no reason.

You can try secureblue and if it does not fit your use cases try Fedora and tinker a bit with bubblejail and other hardening yourself, with that you will learn a lot which is even more valuable than just using a secure os. As far as I know Fedora uses SELinux already which is pretty good.

If you depend on a secureos to protect your life/assets against threat actors like states or any other organisation with massive amount of people and or time/money then the answere will be very complicated and I would suggest talking with a professional consultant because the correct answere can very on many little factors. SecureBlue or QubesOS are fine, no PC and only GrapheneOS even better.

If you depend on a secureos to protect your identity against threat actors like states… …the answere will be completly different since privacy and security can be complimentary goals. TailsOS is suitable in this case.

Yeah you can to that. I did this like you when I started with my homelab. I used podman very fast after playing with docker. You can just replace docker with podman ex:

podman pull x
podman run x
podman compose up

Podman has better rootless support and is a bit more secure because of that.

Just a few tips (optional but I recommend you)

• Do not run container as root: If you run a container as root and the container gets hijacked someone could start/stop container on your behalf and since it would be possible to mount the root fs to the container they would be able to hijack the os. Do not mount the docker socked into the container unless you really trust the process and know the risks.
• UID/GID should not match with the hosts: If you share the same UID (1000) from your user and then the container has the same UID inside it, then they have technically the same permission set as your home directory or worse root directory (if UID is 0) and could do harm if they are exploited and can break free of the container
• Remember to stay up to date: Go on Vaultwarden GitHub and subscribe to notifications about “Security” and “Releases”. Since I would use podman over docker you could have a look into podman auto updates feature.
• Limit container resources: Just do it. No downsides. Limit CPU and RAM usage of the container via the compose.yml file. If someone hacks the container they can’t mine bitcoin on it so easily and it chills your server abit. Here is how you can do that.

Kubernetes is a bit overkill and bloated for your usecase. Kubernetes would be interesting if you host a service with world wide access and millions of parralel users because of the nice scaling functionality of kubernetes.

What ever you do you did the right choice to learn something new, and I wish you fun and joy doing this! When I started vs today I learned many new things and practices which helped me earn money and have fun!

Have had the same problem. The service tried to execute /usr/bin/ly but they renamed it to /usr/bin/ly-dm. Try to execute ly-dm in your terminal and see what happens.

The Problem is not npm. The same can happen for maven, crates, gomods, and other. The problem is that all of these provide and generated a dependency hell where you implement one dependency for one thing which contains 10 subdependency where each of these dependency contain dependencies again. That the dependency hell which is causing such problems. The problem is not npm, its the mindset of developers.

deleted by creator