Or OpenSUSE Tumbleweed
is this real? windows 10 literally came out yesterday
Remember when W10 was going to be the last windows you’d ever need.
Yes, it’s the last version of Windows I’ll ever need.
Can I use Video Editing programs like Vegas on Linux?
KDEnlive is useful for inline video editing, and Davinci Resolve is more of a pro level tool. I have no idea about Vegas.
Like Vegas? Sure. Open source stuff like kdenlive and shotcut exists. Davinci resolve is available for Linux for more professional stuff. Specifically Vegas? Probably only under a VM, and you’d likely get awful performance, so not worth it. If you’re a professional, Linux isn’t always an option, especially if you are in a software ecosystem that doesn’t work there
I’m to dumb for ARCH, and I find default Fedora and Ubuntu very annoying (although I haven’t tried them in a while). I did have a good experience with mint several years ago. What distros should I consider?
Linux Mint, Pop!_OS and ZorinOS are pretty nice for new users. If you want to get a little more advanced, maybe check out something like Fedora Atomic (e.g. Kinoite, Silverblue) or Universal Blue (Bazzite, Aurora, Bluefin). Arch isn’t actually that hard, they have an installation script that makes everything super easy (https://www.youtube.com/watch?v=8YE1LlTxfMQ), or you could watch a video on how to install it manually (https://www.youtube.com/watch?v=_JYIAaLrwcY, https://www.youtube.com/watch?v=YC7NMbl4goo)
Hell my win10 pc hasnt had an update since '21 so no great loss
That computer better be air gapped. Security updates are essential.
It has no internet connection, so no
You mean yes lol. That’s air gapped.
i know you guys are probably right when you say that security updates are important, but why exactly? give me an example of how i could be fucked over while i’m just mindlessly playing my steam games and watching twitch+youtube on a system that hasn’t been updated since 2016.
i blindly assume that as long as i don’t download and run stupid .exes or click stupid links, i am completely fine
You don’t need to click anything suspicious. Remote code execution has in the past been done through images, PDFs, comments on some webpage, or supposedly trustworthy games. Just recently, Minecraft would let an attacker run anything on the victim’s computer due to a vulnerability in Log4j.
If your computer is not directly exposed to the internet, you might get away with some security updates that for example fix vulnerabilities that target the system firewall. But the point is, you’re constantly exposing yourself to attackers without knowing so.
A few example vectors:
-
Cross-Site Scripting (XSS) allows an attacker to run arbitrary code on the victim’s browser. All that’s required is a website that doesn’t validate its input properly. That is, an attacker can write executable code into a YouTube comment and when you view that comment, your computer will execute that code. Obviously YouTube is secured against that, but there are plenty of websites where this attack can be done. Therefore, modern browsers isolate the code execution to only that “browser tab”, so the attacker can’t access some sensitive data (unless the browser has some undiscovered vulnerability or for example the page itself contains sensitive information, say your bank account details). While modern browsers should provide sufficient protection against such attacks, the take-away point is that you don’t necessarily need to click any “suspicious links”. A vulnerability in a well-known website you frequent could be discovered any day.
-
An attacker can easily make your PC go to their website when typing google.com. DNS (how your computer is able to tell which web address is which computer) is not encrypted. It is incredibly easy tamper with. Why you don’t get scammed everyday is because of TLS encryption. Your computer is able to tell that the website is not Google, because it doesn’t have Google’s cryptographic “keys”. Assume that we discover a vulnerability in TLS (encryption of webpages) tomorrow and you refuse to update your operating system. Suddenly, an attacker can route any traffic they’d like back to them and you would be none the wiser. Same thing would happen if some vulnerability is discovered in X509 certificates, if ICANN’s private keys are leaked, and so on.
There are a lot of things that could go wrong. And they go wrong daily. Security updates fix vulnerabilities that we constantly find. They may be updates for your browser, your games, or indeed your operating system, depending on where that vulnerability is. The examples I gave are exaggerated, because they’re meant to be simple to understand. We do not find vulnerabilities in TLS every single day. Still, weak points are being discovered and fixed constantly. One of the bigger exploits were Spectre/Meltdown (attacks on the CPU) that let an attacker read any data they want, provided they can simply run some code on your computer in some way.
Also, obviously, if you expose yourself to the internet directly (e.g. port forwarding) or connect to an unsecure WiFi network, you’ll be bombarded with automated attacks that exploit holes found in firewall and the likes. If you open a port on your computer right now, you’ll get around a few hundred such knocks per day.
There are plenty of videos online that display what happens if you for example use a Windows 95 computer, either directly exposed to the internet or not. Might be worth watching to see just how easy it is for attackers to take over in the case of such an ancient system. Same principles apply to newer systems as well, the attacks are just more complex.
-
So…
Windows 10: the “last” windows version
Release Windows 11, requires specific hardware that you can’t realistically add to your existing PC. But Windows 10 will keep being updated
Windows 10 is not getting anymore updates
Love it, no notes.
To be fair, my understanding is the “10 is the last version” idea came from a developer speaking in an unofficial capacity and the media ran with it. It may have never been true.
While that is technically true, Microsoft didn’t really make any effort to correct the misunderstanding, despite it being a widely reported story in tech.
I suspect they had a legitimate faction that was going to say “rolling release” and so they let it go.