I think my presence in the Apple ecosystem is pretty much decided. I hate this, my moral compass is screaming NO but my logic brain says “technology is meant to disappear behind your use” and that was not my experience with daily driving Linux

I hope you all have a better experience and continue to do so into the future. I don’t wish this cognitive dissonance on anyone

Follow

@brandon I'm going to stick with Linux because macOS feels too constraining for me as a developer, but as a human I wish every Linux desktop developer tried using a Mac for some time just to figure out what we're doing wrong in terms of UX.

@brandon For example, why the f*ck do I have to type my password 3 times every time I reboot my laptop? (once for disk encryption, once to log in, and once to unlock kwallet).

Ok, with some manual configuration i could bring them down to 2... but isn't it my distro's job to get this right? I'm looking at you, and 😡

@codewiz @brandon I understand why this would be a good thing for Ubuntu or even Fedora, but I believe the entire raison d'être of Arch is that you configure that yourself.

@raucao @codewiz @brandon Wrong, the reason of using arch is so you compile your own firmware. It just gives you a assembly compiler and the editor ed with no bells or whistles.

@codewiz @brandon I really wonder why there aren't more filesystem encryption solutions that automatically encrypt your entire home folder and decrypt it when you log in like Ubuntu's ecryptfs does... especially for distros like Fedora Silverblue where most of your stuff ends up in your home folder anyway

@codewiz @brandon FWIW, if you're interested in security, I can think of some reasonably compelling reasons for needing to do it 3 times...

@lightweight @codewiz @brandon And probably these should all be different passwords, because they're doing different jobs ...

@yojimbo @codewiz @brandon yup. An encrypted laptop might be used by multiple people, so needs a secret that can be shared by those people. Logging into a desktop is another privilege, but if you want to protect your secrets on computers that you might occasionally leave sitting on a desk in an office, you might another layer of security. Someone accessing your desktop probably shouldn't also equal access to all your secrets.

@yojimbo @codewiz @brandon also worth noting that the bridging code that'd need to propagate your password between these various systems at different layers within your system would be a very fraught bit of code.

@codewiz @brandon To be fair I don’t have to do it three times on arch personally, but there are ruddy good reasons why separation of that auth is a good idea. That said there are ways to make that work, most ways lower your security posture though. (Full disclosure I use MacOS, Linux, BSD, and Windows on the daily)

@codewiz @brandon And by manual configuration you mean a checkbox that auto logs you into the desktop?

@codewiz Funny enough, on macOS, encryption is almost invisible! I type in a single password on boot and I'm unencrypted, logged in, and my keychain is unlocked

@brandon @codewiz When you look at your threat models, this could be "just fine".

@codewiz I'd rather not have the dock thing and global menu, personally :blobcatgoogly:

Sign in to participate in the conversation
Mastodon

The social network of the future: No ads, no corporate surveillance, ethical design, and decentralization! Own your data with Mastodon!