Debian has a good page on it and how their set up works:

https://wiki.debian.org/SecureBoot

Edit: Ubuntu is derived from Debian and then Mint from Ubuntu, but they may have their own differing approachsnto secure boot.

If your linux OS supports secure boot then it does help improve security.

The differing opinions on it are often because it can cause issues in some set ups and in a default set up its only a marginal security gain.

It will add a layer of security at boot by preventing 3rd party unauthenticated processes / software from running and creates a secure boot chain from your BIOS up to the OS. But the default set up also means other authenticated OSes like Windows can be run, so its not as secure as it could be.

To really secure it you could create your own keys and then only your OS could boot. But as a linux newbie thats likely way more than you need and there are risks if you fuck up, to the point of accidentally locking you out of your own machine

So your choice is really just the default set up being on or off. On is a bit more secure but if you experience any issues then turn it off and don’t worry about it.

Its not doing nothing. Linux uses a Microsoft provided key for initial BIOS authentication and then has its own tree of keys that it uses for security. So it does have the benefits of locking out malicious code/processes even in a default set up.

Using your own secure boot and TPM keys is certainly more secure, but it doesnt follow that secure boot with the default set up is doing nothing to help secure your system at boot.

Linux supports secure boot so if a distro supports it it’s worth using it.

Linux can use a key signed by Microsoft in a preboot loader and then itself perform its own key authentications for all other processes and software (a shim), forming a secure chain from the BIOS up during boot. You dont have to play with creating your own keys.

So if your OS supports secure boot it is worth using it for added security at boot. Its far from perfect in this set up (as there are plenty of windows OS that also have permission to boot) but it is better than a free for all without it even if the risk is low for most desktop users.

You can go further and generate your own keys and use secure boot and TPM together to lock down the system further but you dont have to to get some benefits from secure boot.

So I dont own one but was interested in what could be done.

As far as I can see the 3rd gen model is less versatile than the 1st and 2nd, because its so locked down and has very limited storage. Its more like an iPhone than a PC.

However apparently it can be jailbroken and Kodi installed onto it: https://github.com/NSSpiral/Blackb0x

Jail breaking means “unlocking” the restrictions apple put on the is on the device so you can do more with it.

But this project is last updated in 2021 and from the looks of it online, fundamentally there isn’t much more that can be done. Jail breaking it would be a first step to do anything with it if you want to experiment.

Kodi would certainly give it a new lease of life but that still keeps it as a media consumption device. Kodi is an open source media tool that has a good TV friendly interface, and a huge range of plugins for streaming video and audio (legally but also illegally; kodi itself is perfectly legit and legal but there are plenty of plugins that essentially allow media piracy). You could then sell it on eBay if its working? Someone might want it even if only for cheap?

Other than that, recycle it? If your local refuse centre doesnt recycle it some companies might?

If youre new to linux, then I’d say Linux Mint is the place to start. Use it with XFCE if light weight is what you want.

Not having cutting edge packages is a red herring - you really dont want bleeding edge as thats where the errors and breakages happen. Mint is reliable and secure which is what you need when starting out. You dont want to be a beta tester. Dont confuse latest packages for most secure on linux - plenty of packages have stable older versions which get security patches.

Mint is also very popular, with a huge range of easy to find resources to help set it up the way you want it.

Wayland is also a red herring - its the future but its just not really ready yet. Yes its more secure due to how its built but the scenario you’re using linux in the particular security benefits you’re hearing about are not really going to impact you day to day. And the trade off is that Wayland is still buggy, with many apps still not working seamlessly. Most apps are designed for X11 and x-wayland is an imperfect bridge between the two. I’m not saying Wayland is bad - it’s actually good and is the future. But you dont want to be problem solving Wayland issues as a linux newbie. Dont see Wayland as essentialnfor an good stable and secure linux install.

Personally I wouldn’t recommend Fedora - it has a short update cycle and tends to favour newer bleeding edge tech and paclages. Thats not a bad thing but if what you want is a stable, reliable low footprint system and to learn the basics, in wouldn’t stray into Fedora just yet. It has a 13 month cycle of complete distro upgrades and distro upgrades are the times when there are big package changes and the biggest chances of something breaking. The previous version loses support after a month so you do need to upgrade to stay secure. Most people won’t have issues between upgrades but with any distro when you do a big upgrade things can easily break of you’ve customised things and set up things differently to the base. It can be annoying having to fix thongs and get them back how you want them, and worse can lead to reinstalls. Thats nor a uniquely Fedora problem, but the risk is higher woth faster updating and bleeding edge distros. And in fairness there are lots of fedora spins that might mitigate that - but then you risk being on more niche setups so support can be harder to find when you need it.

For comparison the latest version of Mint supported through til 2029, and major releases also get security patches and support for years even after newer versions are released. There is much less pressure to upgrade.

If the EU were concerned about the US jurisdiction of Linux projects it could pick:

• OpenSuSE (org based in Germany)
• Mint (org based in Ireland)
• Manjaro (org based in France/Germany, and based of Arch)
• Ubuntu (org based in UK)

However if they didn’t care, then they could just use Fedora or other US based distros.

I think it would be a good idea for the EU to adopt linux officially, and maybe even have it’s own distro, but I’m not sure this Fedora base makes sense. Ironically this may also be breaching EU trademarks as it’s masquerading as an official project by calling itself EU OS.

Graffiti free is an aesthetic choice.

Its interesting - the article has taken one view of this as the the target being Palestinian children.

However reading this, the target actually seems to he the “prank” victims. Young people are goading older israelis into showing how angry, biased and racist they are when asked to help Palestinian children, and then sharing that and laughing at them?

It feels like Israeli children are mocking Israeli adults. Its a bit crass but the targets aren’t really Palestinian children. If anything its showing just how racist Israeli adults are.

Of course there is also the disturbing element of Israeli children seeing this all as just a joke, and not seeming to care about what this means about their parents and the country they live in. To see people get so viscerally angry when asked to help starving children is shocking yet I don’t think the Israeli youth seem atnall disrtubed by how hateful the people they’re talking to really are.

I’m not aware of an alternative TV App for android tv. On my android TV live tv is also wrapped within the android interface but other sources like HDMI inputs are not.

If you can switch to HDMI sources outside the android apps then maybe the best thing to do is get a separate basic satellite tuner device?

It seems shitty that google are effectively hiding your inbuilt tv tuner behind an app with all their advertising and other crap.