| ▲ | cosmic_cheese 4 days ago | |||||||
In general the security model of desktop operating systems is woefully inadequate for the modern era. Given the sheer volume of software known to do things not in the user’s best interest it’s borderline insanity that we hand it the keys to the kingdom without so much as a second thought with such frequency. Of course if the user truly desires a zero-guardrail experience they should be able to get that, but it probably shouldn’t be the default. Software should be on a very short leash until the user has indicated trust, and even then privileges should be granted only on a per-domain basis. A program designed to visually represent disk usage will need full filesystem access for example, but there’s no reason it should be able to sniff around on my local network (or on platforms where package managers handle updates, connect to the internet at all). | ||||||||
| ▲ | valenterry 4 days ago | parent [-] | |||||||
> In general the security model of desktop operating systems is woefully inadequate for the modern era. Given the sheer volume of software known to do things not in the user’s best interest it’s borderline insanity that we hand it the keys to the kingdom without so much as a second thought with such frequency. This. It must be the problem of having grown up with it that makes people not realize it. Software will need to operate like people in the real world. You can give your friend power of attorney, but usually you don't, you find a better way to get things done. | ||||||||
| ||||||||