@teratology @animeirl

> I mention void because I don’t run a systemd based distro for security reasons and minimalism

Yeah, I'm in the same camp, but talking about a distro isn't relevant, it's security-as-product rather than security-as-process.

> I’m not saying I’m not suspicious of microsoft, but they have people paid to audit and constantly patch known CVEs

If the software is a trojan, and they fix unintentional problems in that trojan, it's still a trojan. This is the company that, in terms of languages adopted, picked C++. They pushed out VB and VB has been a punchline for as long as I can remember because it's one hole after another even before VBA and email servers still get offered .xls files on a regular basis. I don't think it is wise to take any cues from a company with that kind of track record, let alone a malware vendor. Their endorsement is a negative thing.