From 7b243d1e1c3fd6cd0be20aeb6136406e8c355f09 Mon Sep 17 00:00:00 2001
From: Tommy <contact@tommytran.io>
Date: Thu, 30 Dec 2021 14:42:48 -0500
Subject: [PATCH] fixes

---
 .../linux-desktop-immutable/1_fedora-silverblue.yml            | 2 +-
 collections/_evergreen/linux-desktop.html                      | 3 ++-
 2 files changed, 3 insertions(+), 2 deletions(-)

diff --git a/_data/operating-systems/linux-desktop-immutable/1_fedora-silverblue.yml b/_data/operating-systems/linux-desktop-immutable/1_fedora-silverblue.yml
index 0f6ea0125d..85e3626d8e 100644
--- a/_data/operating-systems/linux-desktop-immutable/1_fedora-silverblue.yml
+++ b/_data/operating-systems/linux-desktop-immutable/1_fedora-silverblue.yml
@@ -13,4 +13,4 @@ description: |
   <a href="https://www.flatpak.org">Flatpak</a> is the primary package installation method on these distrbutions, as rpm-ostree is only meant to overlay packages cannot stay inside of a container on top of the base image. Alternatively, the user can use <a href="https://docs.fedoraproject.org/en-US/fedora-silverblue/toolbox/">Toolbox</a> to create <a href="https://podman.io">Podman</a> containers with a shared home directory with the host operating system and mimic a traditional Fedora environment.
 
 website: 'https://silverblue.fedoraproject.org'
-privacy_policy: 'https://wiki.archlinux.org/index.php/ArchWiki:Privacy_policy'
\ No newline at end of file
+privacy_policy: 'https://fedoraproject.org/wiki/Legal:PrivacyPolicy#:~:text=Fedora%20may%20share%20your%20personal,described%20in%20this%20Privacy%20Statement.'
\ No newline at end of file
diff --git a/collections/_evergreen/linux-desktop.html b/collections/_evergreen/linux-desktop.html
index c62b776dd2..925e945f1b 100644
--- a/collections/_evergreen/linux-desktop.html
+++ b/collections/_evergreen/linux-desktop.html
@@ -171,7 +171,8 @@ <h5>Hardened memory allocator</h5>
 <p>The <a href="https://github.com/GrapheneOS/hardened_malloc">hardened memory allocator</a> from <a href="https://grapheneos.org/">GrapheneOS</a> can be used on Linux distributions. It is available by default on Whonix and is available as an <a href="https://wiki.archlinux.org/title/Security#Hardened_malloc">AUR package</a> on Arch based distributions. If you are using the AUR package, consider setting up <code>LD_PRELOAD</code> as described in the <a href="https://wiki.archlinux.org/title/Security#Hardened_malloc">Arch Wiki</a>.</p>
 
 <h5>Umask</h5>
-<p>Consider changing the default UMASK for both regular users and root to 077.</p>
+<p>If you are not using openSUSE, consider changing the default UMASK for both regular users and root to 077.</p>
+<p>Changing UMASK to 077 tends to break snapper on openSUSE and is not recommended.</p>
 
 <h5>Mountpoint hardening</h5>
 Consider adding <code>nodev</code>, <code>noexec</code>, <code>nosuid</code> to mountpoints which do not need them. Typically, these could be applied to <code>/boot</code>, <code>/boot/efi</code>, <code>/home</code>, <code>/root</code>, <code>/var</code>.