Tor Browser Launcher is intended to make Tor Browser easier to install and use for GNU/Linux users. You install torbrowser-launcher from your distribution’s package manager and it handles everything else:
Downloads and installs the most recent version of Tor Browser in your language and for your computer’s architecture, or launches Tor Browser if it’s already installed (Tor Browser will automatically update itself)
Verifies Tor Browser’s signature for you, to ensure the version you downloaded was cryptographically signed by Tor developers and was not tampered with
Adds “Tor Browser” and “Tor Browser Launcher Settings” application launcher to your desktop environment’s menu
Includes AppArmor profiles to make a Tor Browser compromise not as bad
Optionally plays a modem sound when you open Tor Browser (because Tor is so slow)
The version of Tor might be the same but the flatpack “package” might get updated to fix some issues.
When it comes to version number, i personally am running this at moment:
> tor --version
Tor version 0.4.7.13.
Tor is running on Linux with Libevent 2.1.12-stable, OpenSSL 3.0.5, Zlib 1.2.11, Liblzma 5.2.5, Libzstd 1.5.2 and Glibc 2.36 as libc.
Tor compiled with GCC version 12.2.0
Which is not a flatpack but normal package version on Kubuntu, using the repo of the tor project itself…
> cat /etc/apt/sources.list.d/tor-project.list
deb [arch=amd64 signed-by=/usr/share/keyrings/deb.torproject.org-keyring.gpg] tor+https://deb.torproject.org/torproject.org kinetic main
I know that’s the advice they give, but given the open source nature, can’t we trust flatpak and distro versions?
Also while that is what I would have done on windows, during my first days on Linux I was strictly told never to install things using the windows appraoch; and only get sfotware from distro repo.
It’s the version you can guarantee has not been altered by outside sources. As for Flatpaks you have no guarantee that the browser has not been altered. You do realize a flatpak, snap, appimage, etc… is installing items just like you would a exe file, right? As for extracting a package and running a program from it’s content ALL OS’s you can do that on, it’s NOT “just the Windows way”.