Discovered issues with Fedora Silverblue

The flatpak version of Firefox did not exist when Silverblue started, and afterwards, it still had some issues accessing locla resources for a while. I believe it works fine nowadays, so it would probably require a formal proposal to switch to the flatpak version.

Personally, I never needed an office suite. People nowadays just use Google Docs, like it or not. I do wish GNOME had its own office suite a la Calligra for KDE, since I really value visual consistency on my system, but alas.

My biggest issue with Silverblue was that layering on and enabling a GTK3 theme (in my case the libadwaita one, I believe it’s called adw-gtk3) doesn’t theme things like Evince or the Quick Look-esque feature.

Which is to say, Silverblue is mostly fine for what I do with my machine. My operating system is a glorified bootloader for Discord and Celeste.

I am skipping some comments, but:

I agree with @mattdm too, those points sound very important. Flathub is a total mess. You can add the verified repo only, not filtered but the actual verification mechanism.

But still, just like with Obtainium on Android, the creators use random build environments, far from reproducible or even possible to build at all.

The issue is the need for so many runtimes. Fedora Flatpaks use a single one, which is really really nice. But if you add another repo, you will have a separate runtime in RAM anyways.

What we need is an rpmfusion flatpak runtime extension. I have no idea how this works, but it is a mechanism to plug in the missing codecs etc into the Fedora runtime and make all those apps work.

This could be libavcodec-freeworld or also full ffmpeg.

This would allow a great streamlined and secure system with all the codecs working.

A different method could be Fedora flatpaks using systemd sysextensions shipped as Flatpaks. Not sure if that is possible, but those could add codecs to RPMs and Flatpaks.

Fedora packages are great, better than Ubuntus in my experience. So I have no doubt they work better.

You sacrifice fast updates and need additional trust though.

1 Like

This is generalization. I agree, that most/majority uses some sort of “cloud office”, but there are enough those who don’t. In such cases it is good to have a office suite installed or easily available to install. It is not perfect but Good Enough™ for basic editing, thus does the job.

1 Like

The flatpak version of Firefox cannot communicate with flatpak Password Managers e.g. KeePassXC due to lack of a portal. Firefox in base with a flatpak KeePassXC is a working combination.

1 Like

i just wait for nativemessaging and alternate methods to get all flatpaks to talk other apps so no need to layer or pre install on base the biggest is password managers, there CLI versions, browsers and terminal with container

when these are i can say immutable has what needed

That might work for you but general users will want a password manager integrated with the browser. Your abilities to use password managers via the command line and copy and paste of credentials is not a great UX.

i use browser integration with desktop app and cli for SSH and authentications for repos push/pull etc

I’m not necessarily against that being an option, but I don’t understand the appeal to attach a local password manager to a wild-west web browser. May as well just use a browser sync and let it have passwords saved to encrypted storage.

In my case my major website passwords are auto-filled from Firefox through its sync, and MySQL dbs, game accounts/keys, unrelated website accounts, etc are all safe in a local password db still. No concern of a Firefox or KeePass exploit/hole allowing un-detered access to all my passwords :stuck_out_tongue:


And although putting 2FA in the same place as the passwords isn’t the best idea, I do it, and still keep it separate from the web browsers.

If I need a 2FA for, say these Fedora Discussion forums, I press a keyboard shortcut to open KeePassXC, Ctrl + F → Fedora → Ctrl + T (TOTP), and paste it right into Fedora’s web log-in; all in a few seconds.

Most password managers are not local ones you use the app and all are encrypted and stored elswehere where you use app to decrypt and autofill. Much more secure than local or browser stored passwords and most password managers have passkeys and 2fa and fido authnetication also

1 Like

That sounds weird from a security standpoint :stuck_out_tongue:

I generally only heard of LastPass being an online/cloud password manager, and also heard of it being hacked on 3 different occasions.

I understand online providers are convenient, but it sounds odd to put all your passwords that you’re supposed to be trying to protect, in someone else’s convenient single-location and assuming they’ll protect it.

1 Like