Please feel free to proceed with integrating this by default in Kicksecure / Whonix.
Ideally using ZDOTDIR environment variable if possible. “Stealing” (overwriting) config files from Debian’s zsh (or any other) package using config-package-dev should be avoided if somehow possible.
Ok.
Looks really nice.
Yeah, I guess so. No strong opinion here.
I am looking at this from a different perspective. More like: I always want to see some result even if it means “OK” because otherwise I question if the mechanism to show the error itself is broken. Maybe very likely unlikely here. These fail-safe considerations of mine are probably less important than the usability impact of only showing exit codes on failure.
Or to find out about unexpected exit codes. (Zero when it should be non-zero.)
If nobody else has an opinion here, probably best to only show the non-zero exit codes by default.
/etc/X11/Xsession.d + /etc/profile.d
Similar to other examples in Whonix source code.
…unless there are other solutions that I am not aware of. Distributions setting global environment variables is messy. There are probably no better solutions.
Yes but it’s OK to drop config file snippets in that folder independent of Xorg being installed. So that doesn’t speak against using it. If a drop-in is there, then Xorg is supported.
So seems setting that environment variable in Xorg is easy and reliably possible thanks to /etc/X11/Xsession.d.
For Virtual Consoles I am not sure. I will probably open a separate forum thread because setting environment variables might need a re-design if possible.
dist stands for distribution. What distribution? Kicksecure and Whonix. I couldn’t come up with a better common name. That’s where the “dist” is coming from. Kept it open so potentially other distributions could fork it so neither Kicksecure nor Whonix are inside the package or folder name if not required.
Good question. Looking through Kicksecure · GitHub I was wondering in which package it fits best without needing to invent yet another package. GitHub - Kicksecure/desktop-config-dist seems best. Since it’s kinda a “desktop” modification. Not desktop as in graphical desktop but desktop/notebook user interface related settings.
Currently description is Configuration for Derivative Xfce Desktop but Xfce can be removed from the description to make it more general. Changes by that package seem useful, some even have security impact but still optional and not of very critical importance.