zwekihoyy

I'm curious what would even be "snuck into it" ?

that is a fair point, I wish people didn't trust cloud storage as much but I blame Microsoft for putting it as the default home directory on windows unless disabled. even chromebooks default to local storage unless you select Google drive while windows defaults straight to OneDrive without any obvious signifiers

I'm sorry but no lmao. Microsoft getting hacked isn't increasing your risk for exfiltrating local data.

windows sandbox is... getting there, macos is decent but iirc the app dev can choose to not use it. all Linux options require user intervention to ensure it's set up properly. ChromeOS' sandboxing technique is inherited from Android and is the strongest/strictest of any desktop operating system.

yes but no. the pixelbook was by far and away the nicest build quality of any laptop I've owned, and the Linux containers has basically made it a normal laptop other than requiring chrome. with that said, I bought it second hand for ~$200 would never have even considered it for its original $1000 or whatever it listed at.

ChromeOS is also the most secure desktop focused os you can get so I usually use it for banking and stuff like that.

I 100% agree, I just think it's dangerous rhetoric to push because you end up with normies that have been told "open source is more secure" and end up running any script they find on GitHub without having a clue how to audit what it's actually doing. (this was me 5/6 years ago until I figured out what I was doing).

this is the same reason I find people claiming that Linux is more secure than windows dangerous. I can exfiltrate data from the average Linux install much easier than windows. you can harden Linux to a much greater degree but if you don't know how or that you even need to, you are in a much worse position.

not necessarily. you need security for privacy but you don't need privacy to be secure.

your data is more secure on windows from malicious 3rd party actors than Linux, but you have lower privacy due to Microsoft's ridiculously invasive telemetry. The telemetry does not decrease your security though.

who do you think is maintaining a majority of packages of linux? there are plenty of reasons to use Linux over windows, I haven't touched windows in a good year or two, but it is immensely less secure without significant hardening efforts that aren't exactly trivial to understand. Windows isn't great on security either, MacOS is ahead of it and ChromeOS is even farther.

I will concede, assuming you have the in-depth knowledge required, you can build a more secure platform with Linux due to the ability to compile the kernel with only needed features and being able to fully control what is allowed. out of the box, no custom kernels, basic user experience? Linux sits at the bottom.

you're conflating security and privacy which are two entirely different subjects.

nextdns is the most performant option I've used. it often beats our cloudflare even. adguard wasn't bad but it was a bit more cumbersome and very slow.

I don't like recommending self hosting as opening ports on a private network isn't a great idea. you could use something like cloudflare or tailscale to bridge access but you'll run into issues with network speeds.

I think using virtualbox is the bigger offense here.

there is little difference between "open source but you need formal education to be able to dig through and understand the documentation and code" and closed source. open source is still better for ethical reasons but for 9/10 users, it's not reasonable to check the source code and they are losing any potential "security" benefits that was provided.