Remix.run Logo
Remix clone Hacker News
new | show | ask | jobsGithub
angry_octet 4 hours ago

We might also ask, why doesn't Linux also track such meta-data? Are Linux users not also subject to drive-by downloads impersonating valid files? Should we be one chmod a+x away from compromise?

danielheath 4 hours ago | parent | next [-]

Yes, we should be.

My computer should run programs when I tell it to run them.

Don’t blunt _every_ tool just to make them harder to cut yourself on.

angry_octet 3 hours ago | parent | next [-]

I hope you're in the very small minority of people who rigorously manage untrusted downloads and whitelist every binary, because you're operating an appliance from the 1970s, sticking a metal fork into an un-earthed toaster. Most people need help from their operating system.

b65e8bee43c2ed0 18 minutes ago | parent [-]

then we, the very small minority, want a button to disable that help.

rtpg 2 hours ago | parent | prev | next [-]

Increased metadata isn't tool blunting in itself though, even if MacOS uses it for being... annoying is one way of saying it.

Provenance information bundled into a file is not the worst idea in the world IMO. We have created/modified timestamps on files already, right? There's definitely the question of "why" but hey if more of my binaries just had at least a tag about who put them there that would be a win in my book.

Not an argument for doing what MacOS does, just an argument that the info would be nice to have.

danishanish an hour ago | parent | prev | next [-]

It’s not blunting a tool, it’s sheathing it. Modern software requires too much proxied trust for this attitude to work.

Joker_vD 3 hours ago | parent | prev [-]

I sincerely agree. By the way, thanks for lending your machine for my "Network-Retransmission-and-Compute-as-a-service" network.

emmelaich 3 hours ago | parent | prev | next [-]

Tar on linux will. e.g. selinux attrs and other xattrs.

Open question, is it worth attempting to main these semantics between mac and linux.

bitfilped 3 hours ago | parent | prev [-]

Should I be able to run files I download on my own computer? I think yes I should, hate fighting MacOS to do simple tasks because Apple engineers assume the end user has the average intelligence of an ostrich.