Solar Bear

Your example of Ubuntu being a good desktop is a web service run by Canonical that is relevant to maybe 1% of users, if not less?

Look, I’m happy that it works great for your use case. But this doesn’t matter to most users, and it’s also not even intrinsic to Ubuntu itself. OpenSUSE also has fantastic build services. Basically all major git services do too.

Reddit is mildly left of center as a whole. It is not leftist. You do not find many people there who are genuinely anti-capitalist, which is a prerequisite for any flavor of leftism.

The counter to low-quality “Ubuntu sux” posts is not low quality “nuh uh it’s actually super epic!!!” posts, but that’s all we ever get. I’ve seen this pattern for probably fifteen years now, and it’s exhausting. If you don’t care about the criticisms and want to keep using it, then keep using it. More power to you. I probably use things you think are garbage. Hell, Windows users think we both use garbage. I’m just tired of people desperate to justify their choices like they need to “prove” something to everyone who disagrees.

There are plenty of high quality takedowns of Ubuntu, but so rarely are there high quality defenses of it, generally because the criticisms are correct. Nobody ever talks about what makes Ubuntu good, not even Ubuntu users. Arch users will yap your ear off about ArchWiki and AUR. I’ll evangelize Nix to anybody who will listen as the future of advanced Linux management. OpenSUSE Tumbleweed fans will not shut up about rollbacks and bleeding edge software. Fedora users… well, Fedora users are usually busy out there actually doing productive things with their time instead of pointless internet squabbles.

But what is Ubuntu strong at? I genuinely have no idea. All I ever see Ubuntu users say is that it “sucks the least”, in some vague indescribable way. That it’s not as bad as everyone says, that Snaps are actually fine, etc. Always on the defensive. If Ubuntu is actually good, somebody needs to get out there and make a case for what it’s good at, besides being featured as the default instructions for running proprietary third-party software.

I don’t know why we’re still doing snap discourse in 2025. I’m going to be harsh and direct.

It has a proprietary server backend. This is objectively true. Theoretically you can build an open source backend, but nobody has completed a full implementation of it.

If you don’t care about that, you can use Ubuntu, nobody is stopping you. You don’t need other people’s approval. Which is good, because of the people who disapprove, you’re never going to get their approval until it’s actually open sourced. You’re not going to convince anybody here to stop caring that it’s proprietary. So just get over it and use your own operating system without airing your insecurities online about it.

Something you might want to look into is using mTLS, or client certificate authentication, on any external facing services that aren’t intended for anybody but yourself or close friends/family. Basically, it means nobody can even connect to your server without having a certificate that was pre-generated by you. On the server end, you just create the certificate, and on the client end, you install it to the device and select it when asked.

The viability of this depends on what applications you use, as support for it must be implemented by its developers. For anything only accessed via web browser, it’s perfect. All web browsers (except Firefox on mobile…) can handle mTLS certs. Lots of Android apps also support it. I use it for Nextcloud on Android (so Files, Tasks, Notes, Photos, RSS, and DAVx5 apps all work) and support works across the board there. It also works for Home Assistant and Gotify apps. It looks like Immich does indeed support it too. In my configuration, I only require it on external connections by having 443 on the router be forwarded to 444 on the server, so I can apply different settings easily without having to do any filtering.

As far as security and privacy goes, mTLS is virtually impenetrable so long as you protect the certificate and configure the proxy correctly, and similar in concept to using Wireguard. Nearly everything I publicly expose is protected via mTLS, with very rare exceptions like Navidrome due to lack of support in subsonic clients, and a couple other things that I actually want to be universally reachable.

I envy your life, as it feels like every year the browser assimilates and consumes more and more.

You’re greatly overestimating how many people that is; additionally, it was largely people that aren’t very committed to FOSS that got mad. The project maintainers and most users are fine with it. People who are committed to FOSS ideals are overwhelmingly progressive to leftist. That’s why those codes of conduct were added in the first place, and were largely uncontroversial amongst most actual contributors of those projects.

Agree with the former, not the latter.

“Let’s remove the social element of our social movement”

Great so what’s left at that point, the free value FOSS provides to corporations?