Reduce vulns in dom0; (yes, I know what I am implying there).
I recommend you check your assumptions and make a clear case.
No, but perhaps we should create a new thread?
You are of course free to do so, but may I recommend reading all the discussion that already happened about this topic here in the forum and on github. Personally I have no appetite in going through all that once more.
A few hints:
- the choice of distribution in dom0 matters little today and will matter even less in the future
- dom0 is always offline / no remote attack surfaces
- as more and more hardware interfacing is moved into dedicated system qubes (sys-net, sys-usbm sys-audio, sys-gui etc.) the tasks for dom0 become less and less
- at some distant point in the future dom0 might be a Qubes OS specific minimal distribution
Short of real and major security benefits in moving dom0 to another distribution it is simply not important enough at the moment to distract from other more urgent development tasks.
Personal likes or dislikes for this or that packet manager / distribution are irrelevant.