Remix.run Logo
Remix clone Hacker News
new | show | ask | jobsGithub
Joel_Mckay 3 days ago

Snap and Flatpaks only real legitimate use-case is legacy compatibility:

1. Current release applications on deprecated OS (Mostly good)

2. Deprecated applications on current OS (Mostly bad)

The Windows style packaging architecture introduces more problems than it solves. Fine for running something like Steam games with single shot application instances using 95% of system resources each power cycle, but folks could also just stick with Windows 11 if convenience and security-theater is their preference.

Some people probably won't notice the issues, but depends what they do. Arch Linux itself is a pretty awesome distro for lean systems. =3

akimbostrawman 3 days ago | parent [-]

>single shot application instances using 95% of system resources each power cycle

Source? There is no measurable energy or efficiency difference at least for flatpak on any semi recent hardware. I know that snaps do take couple seconds longer at first start.

I prefer flatpaks for proprietary and internet facing applications because of there easy sandboxing capabilities. There is also the advantage on archlinux not needing to do a full system update for a single application.

Joel_Mckay 3 days ago | parent [-]

People often started here:

https://tldp.org/HOWTO/Program-Library-HOWTO/shared-librarie...

Getting into why the community argued for years while Debian brought up deb version controlled packaging is a long dramatic conversation. Some people liked their tar ball mystery binaries, and the .so library trend started more as a contest to see how much people could squeeze out of a resource constrained machine.

In a single unique application running context, the power of a cached .so reference count are less relevant. As a program built with .so may re-use many resources other programs or itself likely already loaded.

> ldd --verbose /usr/bin/bash

> ldd --verbose /usr/bin/cat

Containerization or sand-boxing is practically meaningless when punching holes for GPU, Network, media and HMI devices. Best of luck =3

akimbostrawman 2 days ago | parent [-]

>Containerization or sand-boxing is practically meaningless when punching holes for GPU, Network, media and HMI devices

Many applications don't need these permissions and even the ones that do will be much more secure than having full user space access by default.

Someone could exploit the system to gain more access vs someone does not need to do anything because they have full access by default. It's like arguing you don't need a root password because sudo is insecure anyway.

Joel_Mckay 2 days ago | parent [-]

Not really, if some noob deploys janky code they don't understand, than someone will eventually worm it for sure. Containerization has not prevented an uptick in nuisance traffic from Cloud providers, but made it orders of magnitude worse.

Qubes, Gentoo, and FreeBSD are all a better place to start if you are interested in this sort of research. Best of luck =3