| ▲ | nailer 13 hours ago | |
> Then we expect uses to know better than e.g. to trust links to .sh style installers some FOSS suggests... I don't know anyone that inspects every binary yet we apparently we should not trust shell scripts? | ||
| ▲ | coldtea 12 hours ago | parent [-] | |
I know many who only use binaries from trusted sources, that do monitoring, provide certificates and checksums, and so on - and run them in an OS sandbox too when they install them. So there's that | ||