NoScript browser extension is one example. DNS filtering is another.

In college, one of the best courses I took was Programming Languages. It covered a smattering of languages illustrating different approaches and methods. Maybe a week or so on each plus you had to write some code in each.

Android is Linux using SELinux for user confinement plus users do not have root access and it uses verified boot to enforce all that.

Keep in mind the system meaning root can do anything it wants. User apps cannot though they can ask the system to do certain things for example by SUID executables for example or other methods. Not sure how android actually does it.

What is different about Android is owner, user, work profiles, and the new private space structure. Not sure low level how that is done but presumably combination of different users, SELinix, and different encryption keys.

I think they said Pandoc. I have used that too some.

Bluefish.

I remember working on a large doc around 1990. Pagination and figures, what a nightmare. Sounds like maybe similar issue. I’m not really sure Office impoved after say 2003. They could have called it done at that point.

Virtualbox should not run slowly in terms of compute. Make sure your allocating enough cores and memory, and VT/AMD-V is enabled in the BIOS of the host. Also Guest additions should be installed. Not sure but that might help IO speeds.

What might be slow, Graphics may not be acceralerated. Exactly what VM software to use, what it works with, and actually getting it to work can be challanging. Installing guest drivers though is probably required.

For Linux KVM solutions are probably preferred and more native solution but more technical to use. Getting graphics acceleration with KVM has been challenging, though may be possible. KVM is used widely on servers, but is not that desktop friendly.

All VM solutions are resource intensive. Use containers and/or native software to reduce/avoid that.

Edit: I myself have used VirtualBox but these days I use KVM including on my workstation.

At work the only issue I ever found is the requirement to use Power Point for presentations and Word for filing patents. LibreOffice just did not translate well enough. Have not tried OnlyOffice.

Edit: Complex Excel sheets especially with macros would be a problem too. These are not always cross version Excel compatible for that matter. One reason I shifted that stuff to Python long ago and voided that issue.

Keep in mind that this is probably very instance dependend. I use Beehaw which generally does not tolerate this sort of thing and this expectation is stated very clearly. For us down voting is not even possible. We also do not federate with nodes that cause the biggest issues. So there are things that can be done but it is not perfect and has consequences.

Just mentioning.

Edit: Even with that, there has been discussion of Beehaw leaving the threadiverse due to these issues and lack of mature moderation tools. Not sure where that stands.

The system is complex plus a lot of legacy history. APTs for example (Advanced Persistent Threats). I think I have heard, that you can no longer guarantee that wiping the system and reinstalling the OS will eliminate them in all cases. They could for example burrow into the Firmware and Microcode.

Or look at Windows, MS has had huge problem with old drivers and other stuff they run at very high permission levels. Windows is full of stuff from 25 years ago when security did not matter.

Keep in mind that you actually do have control over what you and your reports use for software and their license compliance. Otherwise not your problem. Beyond that, it is an issue for legal anyway and management.

deleted by creator

Sorry, the most important thing about a language is readability and maintainability. Also speed writing bug free secure code is next. Speed of execution and sometimes memory use is next.

The order may vary depending on project.

Not sure I would call Zim bare bones and it does basically most of what your asking. What I like about Zim is it can handle notebooks of many thousands of notes plus it is all just a folder tree in the file system which means you can use standard Linux tools and Python to do stuff if needed. Sadly not markdown.

I like Zim for large knowledge base collections. It is a desktop wiki. For quick short mobile notes I use Joplin. Never used it but logseq is taked about. It seems more of a Journal.

I sync via Nextcloud.

For alternatives see alternativeto.net.

deleted by creator

I assume it has something to do with how secure boot, the TPM, and Bitlocker interact.

I get it. Credential storage and recovery is a big issue. People vary in skill, ability to keep track of keys or remember how to use them, and they may not have a password manager, safe deposite box, or other locked storage to store them in.

By the way, I would not consider logging in via ssh and running a bash script to be insecure in general.

However taking uncontrolled data from outside of that session and injecting it could well be insecure as the data is probably crossing an important security boundary.

I was more thinking of the CGI script vunerability that showed up a few years ago. In that case data came from the web into the shell environment uncontrolled. So uncontrolled data processing where the input data crosses security boundaries is an issue kind of like a lot of the SQL injection attacks.

Another issue with the shell is that all proccesses on the system typically see all command line arguments. This includes any commands the shell script runs. So never specify things like keys or PII etc as command line arguments.

Then there is the general robustness issue. Shell scripts easy to write to run in a known environment and known inputs. Difficult to make general. So for fixed environment and known and controlled inputs that do not cross security boundaries probaby fine. Not that, probablay a big issue.

By the way, I love bash and shell scripts.