What FS you’re on? I’m using BTRFS and have the same problem. Simply because disk analyzer doesn’t read snapshots.

It is quite a bloat. Llama3 7B is 4.7GB by itself, not counting all the dependencies and drivers. This can easily take 10+ GB of the drive. My Ollama setup takes about 30GB already. Given a single application (except games like COD that takes up 300GB), this is huge, almost the size of a clean OS install.

Oh. I get it now.

This I have no idea.

So what’s the prize for Linux desktop would get? For for-profit cooperation, that’s market share and revenue. Yet, as far as I concern, most Linux desktop doesn’t chase market share, nor earns revenue.

But does Linux have to “win”? And if so what they “wins”?

Gnome and other desktops need to start working on integrating FOSS AI models so that we don’t become obsolete.

I don’t get it. How Linux destops would become obsolete if they don’t have native AI toolsets on DEs? It’s not like they have a 80% market share. People who run them as daily drivers are still niche, and most don’t even know Linux exists. Most ppl grown up with Microsoft and Apple shoving ads down their throat, using them in schools first hand, and that’s all they know and taught. If I need AI, I will find ways to intergrate to my workflow, not by the dev thinks I need it.

And if you really need something like MS’s Recall, here is a FOSS version of it.

T14 Gen 3. Or T480 for hot swap battery.

When I can inject keystrokes to windows not on focus with scripts.

You can. In fact I’m planning the setup for my laptop which uses this as part of the design.

https://wiki.archlinux.org/title/Dm-crypt/Encrypting_an_entire_system#LUKS_on_LVM

Btrfs subvol isn’t suited for all cases. For example I can’t do LUKS on top of Btrfs because its a filesystem, not block storage.

So you mean BTRFS over LUKS? I will have a try on a VM later, plus the ZFS too. Thanks for the advice.

I’m planning FDE on my laptop which have 2 drives. I originally plan to use LUKS on LVM as I can use LVM to join two drives into one. But now I wonders if my choice is right.

Should I worried about it?

Should the LVM partition layout considered as metadata leak in LUKS over LVM?

Hardware token being less secure?

For secure boot bypasses I could only find BlackLotus is the only one capable to do this. I would like to have more details to support the claim “Secure Boot has been hacked in a minute.” Also, I would like the explanation on secure boot is a false sense of security and points to suport such claim as BlackLotus is the only publicly known malware to bypass secure boot.

However, I do firmly believe that there ia no reason that servers can’t use FDE as they are no differ than other typical computer.

EDIT: forgot the “boot” for secure boot

I though FDE is to thwart physical access to exfiltrate and or recover data. Making the root partition unencrypted surely will boost performance but I feel like this opens up an additional avenue for an attacker to exploit and defeat the purpose of doing FDE? It isn’t just making “installed apps private” but literally replace some binaries with a backdoored version of it with then enables access to decrypted data.

That I doesn’t know Ubuntu patches it out.

Great to hear. TPM is totally usable if your threat model can tolerate the risk. Sadly Linux is a bit lacking support for TPM in FDE. You can try the Nitrokey with GPG method without pin I wrote in the other thread if you hit the wall. Good luck!

Here’s a guide if you want FDE with TPM: https://blastrock.github.io/fde-tpm-sb.html