you should perhaps find a little energy and read the whole message. especially the paragraph that starts with "Discussion". because that paragraph is the rule. what do you not understand about this?
that should patch it up, mostly. flatpak gives real isolation. It's not 100% though, things can leak, like I think X11 access is unlimited, so wine programs can read other window contents, capture and inject keystrokes and mouse events if they are prepared to do it. but wayland windows they can't see or even know if they are open. but they may still be able to mess with your bottles config and other things installed for the bottles flatpak container
yeah on windows its.. limited. you can make virtual playback devices (speakers) with programs like vb-cable to separate them. you can then set up monitoring for them so that you hear it and.. you can't mix it with your mic so that's no good.
there was also Synchronous Audio Router. but it's buggy and microsoft made sure it never ever gets an update
I would prefer the setup to be easy on the client side
you mean for the viewers, right? this shouldn't make any complications for them
Recently there was a discussion about an r/privacy mod, carrotcypher. they have been mod on that sub since before the reddit exodus but they are making very strange decisions, to put it lightly. maybe this is their work too
yes. google apps must stop being system apps. like there is no reason google music and co are installed that way as they don't need amy system permissions
consider requesting a GDPR data request, and when that's completed a GDPR data deletion. the former mostly to have a backup for you, you can skip it if you don't find it important
in my experience liking stupid pages, and political news pages, and sometimes giving various reactions to posts helps. did that for a few weeks last year, but decided that this experimentation does not worth my time
and even if you remove the Z: drive letter, in my understanding the software can still access your filesystem if it was prepared to call linux specific kernel functions, or if it has a copy of its own glibc or musl and is prepared to use it
pdf files can contain javascript code that can run when it is opened. but when using complex formats (I think almost all video files, pdfs), it can happen that the software that understands it makes mistakes when reading it and making sense of it, and an attacker tries to make use of this to trick your software into doing something that wasn't intended by its creator. this is how it can happen that an mp4 file (or mkv, others, ...) cannot contain executable code (according to specification), and yet it can
in the case of pdf files, bundled fonts may be another source of problems
a few years ago (actually, probably 5+, how the time flies) they made some kind of data collection mandatory, but at first totally hidden, afaik not even a changelog entry. then people found out and went angry, so unifi made an opt-out setting for it
I don't know what happened after that, but to me they have shown it clearly that they are driven by US mentality (not because of current politics, but generally)
never said anything about the US, but fuck that too