Absolute most secure/private desktop OS?

DeletedUser590

Considering using my GrapheneOS phone in desktop mode vs. a computer with QubesOS/Secureblue or something.

I know security and privacy are different goals, but looking for one that is good in both if possible.

I also really like the idea of having one device in my pocket and on me that can double as a desktop computer when hooked up to a dock too.

I'm a pretty casual user. I'm not a gamer. Day to day I mostly browse Reddit and watch YouTube. I also don't use any social media.

I think with my use case, a GrapheneOS phone in desktop mode could be useable for me, if it is indeed "better" than my desktop with QubesOS/Secureblue.

gMan

DeletedUser590 if you're really concerned about privacy and security, then you need to look beyond the OS - there are serious potential and known problems with the hardware and firmware powering the vast majority of computers

i'd recommend looking at Raptor if you're serious about this stuff, or System76's laptops running Coreboot if you don't want to spend thousands on a Raptor system - you might also find some stuff here to be useful (full disclosure: i put that together)

many people might disagree that privacy is dead, but i have every reason to believe it is absolutely dead, however this leads into a discussion that's far beyond hardware, software and the tech industry in general - i think the only meaningful discussion left at this point is how to circumvent a particular threat, such as an ISP or your average data-harvesting tech corporation which, for the most part, is still doable ... i think

N1b

DeletedUser590 I think it's easy to assume GOS is currently both most secure and private and gives you decent agency in settings and app permissions. It's also very user friendly and light on resources, especially compared to Qubes OS. The security model of AOSP (especially GOS) and the Pixel Hardware is much stronger as well.

So if the Desktop mode is enough for your needs, why look further and tamper so much with Hardware and OS when GOS gives you all that by default? I'd only go that route if I knew why specifically I need a Desktop Linux system over GOS (specific apps or settings), and even then I'd try to offload most of my usage to GOS. You mentioned you're a casual user, which implies to me that GOS (or whatever comes after if GOS is not the best solution anymore) is your current way to go.

DeletedUser590

gMan My current computer has an MSI Z790 motherboard with Dasharo/Coreboot installed. Most modern Coreboot PC I could find, that I know of.

Stayjuice

gMan sorry I find that pretty hilarious recommending a system that costs between 5 and 10 thousand dollars (5k for a motherboard and 10k for a complete pc) 😂

I can build the most secure system for 500 and so can most users maybe 100-200 at a push

DeltaSlim

I like the avatar for your account :)

I think this really strongly depends on your threat model. People may disagree but pound-for-pound Qubes is definitely the desktop OS that is most difficult to compromise, the devs have very impressively designed an OS which is resilient to an array of attacks. Qubes is also very difficult for a lot of people to use (much more so than Graphene) and can be a pain to get working depending on what hardware you are dealing with.

It's very difficult to assess what is "better" for a desktop environment without knowing what sorts of threats you're worried about. Qubes frees your hand to, say, have some disposable environments routed over tor and others routed over a VPN or whatever (you can ofc do the same in Graphene using orbot, but orbot is a little rough around the edges...). Similarly Qubes allows you to keep some sensitive materials (passwords databases, sensitive documents, etc) in offline virtual environments (effective software airgaps) which can be powerful in protecting sensitive materials, something else difficult to emulate in Graphene. So if you're singularly worried about passive/dragnet surveillance there are benefits to using Qubes over Graphene in desktop mode, but those benefits may not be significant enough to warrant all the work in switching. Alternately, if you're worried about targeted surveillance/active attacks on your devices I'd say out the box Qubes is probably more resilient to an attack than Graphene simply because virtualization can be really effective at containing a compromise. The huge benefit to Graphene is the fact that with the auditor you can be virtually certain that the device has not been compromised in a persistent way, whereas I'm not aware of similar hardware-based attestation being possible, say, on a device running Qubes. So you may be more likely to be compromised on Graphene if you're being targeted, but you'll also have an easier time knowing that you were compromised on Graphene. In other words, there are upsides and downsides to both. I'd say if you have any activity which powerful adversaries want to get their hands on, it is worth considering having a Qubes system where you also run Tails for some activities on a desktop environment, just because eventually your Graphene devices becomes a single point of failure otherwise. But that totally depends on your threat model.

DeletedUser590

DeltaSlim Yeah. Right now on my desktop I have Dasharo/Coreboot installed, but Dasharo also has a Heads release for my motherboard. It's an MSI Z790. Was thinking about getting the required TPM module and Nitrokey and trying it out with Heads.

Related to my profile pic, I've met a lot of other anarchists in the whole FOSS/privacy/security community. Especially relevant with today's politics and the current people in power...

Vincent96

Stayjuice What is that system?

Eumenia

Stayjuice I can build the most secure system for 500

I would like to see it

otterfoghornrainfall

Stayjuice Could you give us a brief rundown of how you'd do this and with what hardware?

gta3

I don't think u need to go full absolute all out...

A solid Linux system(either of those mentioned here are fine) with good clean usage (safe browsing, not installing proppriatary crap, not clicking random links, etc) should make you really resilient...

Even using Ubuntu with minimal apps is more private than windows and Mac etc