https://www.kicksecure.com/
Apparently from the people in the Qubes/Whonix circles comes a preconfigured Debian. Currently, there is no iso, but you can already install it over Debian yourself.
I'd like to see what they do with modern end-user applications, which are typically full of telemetry and bad choices by default. Debian itself tends to remove some trash already, these guys might take it further. They say all pre-installed applications are reviewed for a start.
Usually, this scene is more focused on security than privacy, which I believe to not be as important for the public. Before someone wastes resources on a real hack, he'll simply coerce you into compliance. That is, if you didn't already 'willingly' click 'yes' due to lack of alternatives. Like with the tiresome browser hunt, or the mess that is Thunderbird/E-Mail. Not like you have a real choice today if you need to partake in society. Stallman's 'curl the page and read it' paradigm is not an option anymore.
The security improvements might be interesting for hardcore guys like @would though. I don't understand the math behind it, but I've been interested in entropy. They seem to have looked into that extensively: https://www.kicksecure.com/wiki/Dev/Entropy. Common Linux knowledge however is that it doesn't matter, see the classic urandom debate: https://www.2uo.de/myths-about-urandom/.
Starting with kernel 5.6 haveged is even included. I was very wary of it when I first encountered it and even waited for key generation. Entropy is a funny thing even lifetime math nerds apparently can't 100% agree on.
The biggest factor for a distro like this is still usability - e.g. qubes requires a supercomputer and infinite patience if you were to use it every day for every task. (Even though the concept is fantastic.) I'd rather be as offline as possible. Maybe 'kicksecure' can provide a middle ground? Has someone played with it?
