I don’t know where you got the idea that I’m arguing that old versions don’t get new vulnerabilities. I’m saying that just because a CVE exists it does not necessarily make a system immediately vulnerable, because many CVEs rely on theoretical scenarios or specific attack vectors that are not exploitable in a hardened system or that have limited impact.
The fact that you think it’s not possible means that you’re not familiar with CVSS scores, which every CVE includes and which are widely used in regulated fields.
And if you think that always updating to the latest version keeps you safe then you’ve forgotten about the recent xz backdoor.
Just because it has a CVE number doesn’t mean it’s exploitable. Of the 800 CVEs, which ones are in the KEV catalogue? What are the attack vectors? What mitigations are available?
You did a recursive chown or chmod, didn’t you.
Or they work in a regulated industry that requires pseudo-airgapped machines for remote users, e.g. the machine actually interacting with the systems needs to be within the controlled boundary but the company has a presence in multiple locations, so the solution is to have a Citrix server that the users remote into. But because the SSP also has access control requirements at every stage that take a long time to get updated to newest industry standards, the user still needs to have passwords rotated, MFA, and all that kaboodle.
Bazzite, as a gaming-first distribution, makes some choices that are acceptable for such a platform, but that I believe are unacceptable in a secure development environment. This is why I wrote “not ideal” instead of “bad”. If you don’t care about security then it’s perfectly cromulent. But I value security, so I would not recommend it.
Bazzite is a good HTPC or living room gaming distro. It is not an ideal all purpose desktop distro, just like a Steam Deck is not an ideal all purpose desktop system.
If you want a Bazzite-like experience that is better suited for the desktop then use Fedora Silverblue, which is what Bazzite/ublue builds upon.
My mistake. I read your post as you using VMWare Workstation on Fedora, not the other way around.
Your other options are Virtual Box by Oracle or head down the Xen path.
Or, since OP is on Linux, a native KVM option like virt-manager or boxes.
Gpaste can do it. The out of the box experience is a bit hit and miss, but it’s plenty configurable and reliable once set up to your liking.
Bugs? No, works as intended. But you might want to consider a clipboard manager instead, so that you can sync the clipboard to the selection buffer and vice versa.
Up until last year I would have said Ubuntu. It was qualitatively the best desktop choice when I started with it in the aughts, and is still one of the few distros that has a reasonable out of the box install option with LVM. But I recently tried a Silverblue variant and NixOS, and I like what I see. Once I’m comfortable enough I will switch, I’m tired of the ensnapification and the Pro nag screens.
The biggest downside is that it’s only for distributing applications with a graphical user interface. Command line utilities still need another method of distribution.
The one thing snap does that flatpak doesn’t is provide CLI applications. But then nix also does that, so snap can go pound salt.
I used a Fractal Design case for a home server in the past. Pretty happy with them.
Just to clarify, the previous comment asked about benefits of XFS over ext4. But I completely agree with your reasons for choosing ext4.
Not sure about erasing all of it, but it is (or was) certainly possible to delete enough of it to brick a motherboard https://www.phoronix.com/news/UEFI-rm-root-directory