undefined | Better HN

0 pointsbeagle37y ago0 comments

That’s true, but on the other hand, you have some 15000-30000 packages installable from software center that are guaranteed virus free, with automatic updates. (And they are liver and gratis to boot), so the average user rarely if never needs to go there.

0 comments

AnIdiotOnTheNet7y ago

> installable from software center that are guaranteed virus free

This is not true. Repos can, and have, been hijacked. Packages can and have had malicious code inserted. Hell, projects can and have accidentally accepted stealth backdoors in the guise of bug fixes or feature commits.

The repo system is not a panacea for security.

beagle3OP7y ago

This is all true for any distribution system.

However, in addition to e.g. hacking the actual developer/distributor, on Windows, you have to be wary of a rogue versions on e.g. download.com that rank higher than the genuine one, and of google ads for trojaned VLCs and stuff.

It is no panacea, but it is very significantly better than the Windows world (and the Mac world outside of the app store)

Furthermore, modern snaps have limited privileges and file system views, so a backdoor is much less effective; I assume appimages and flatpaks have similar mechanisms (and if not, they should).

Situation is far from perfect, but it is about a billion time better than Windows whichever way you measure it.

j / k navigate · click thread line to collapse