@nipos It is objectively insecure. There is no sandboxing on the standard desktop, the entire kernel is written in a memory unsafe language, the kernel is too big for anyone to review so you just have to trust others, the kernel is wildly behind on exploit mitigations, a compromised non-root user with access to sudo is almost equal to a full root compromise as there are an insane amount of ways for an attacker to retrieve a password,

(1/2)