• phx@lemmy.ca
    link
    fedilink
    arrow-up
    10
    ·
    edit-2
    1 year ago

    No, it’s a user problem on both OS’s. Installing random shit from untrustworthy sources is a much more likely source of infection that a zero-day, network-based exploit, etc

    Not every OS allows you to simply click on a random installer/eventually (maybe enter a password) and get owned. IOS on phones doesn’t. Android requires you enable untrusted sources.

    It sounds like not including a GUI app by default to click-install random packages (outside the package manager) is the extra step for various Linux distros. That’s not a problem, that’s a good idea.

      • Nik282000@lemmy.ca
        link
        fedilink
        arrow-up
        10
        ·
        1 year ago

        Github is untrustworthy, anyone can put anything on there. It is up to the end user to determine if a project is safe to use or not.

        The default repos for Debain on the other hand are filled only with software that has been checked by at least one competent person, making them inherently safe.

          • Nik282000@lemmy.ca
            link
            fedilink
            arrow-up
            6
            ·
            1 year ago

            This shit has become tedious

            No kidding. Open source software is safe because it can come from a trusted source that can be checked by others. Not every open source project is checked but the default repos of Debian, for example, are checked and can be trusted.

            All closed source software, on the other hand, is untrustworthy because it can never be checked. This goes for the iOS and Android ecosystems as well. Despite their walled gardens the software is not open and can not be checked, which is why malicious software keeps making it’s way onto phones.

            Have you ever heard of malicious code in the Debian repos?

            • Helix 🧬@feddit.de
              link
              fedilink
              arrow-up
              1
              ·
              1 year ago

              Have you ever heard of malicious code in the Debian repos?

              I think I heard so a few times, yes. Depends on what you define as “malicious” and which of the repos you’d call Debian repos. Is Debian only stable or is it unstable and testing or contrib or non-free aswell?

          • Helix 🧬@feddit.de
            link
            fedilink
            arrow-up
            3
            ·
            1 year ago

            This shit has become tedious.

            It always was tedious to use computers, people just get a lot of stuff abstracted away by millions of hours of manpower.