Linux

63955 readers

1110 users here now

From Wikipedia, the free encyclopedia

Linux is a family of open source Unix-like operating systems based on the Linux kernel, an operating system kernel first released on September 17, 1991 by Linus Torvalds. Linux is typically packaged in a Linux distribution (or distro for short).

Distributions include the Linux kernel and supporting system software and libraries, many of which are provided by the GNU Project. Many Linux distributions use the word "Linux" in their name, but the Free Software Foundation uses the name GNU/Linux to emphasize the importance of GNU software, causing some controversy.

Rules

Posts must be relevant to operating systems running the Linux kernel. GNU/Linux or otherwise.
No misinformation
No NSFW content
No hate speech, bigotry, etc

Related Communities

Community icon by Alpár-Etele Méder, licensed under CC BY 3.0

founded 6 years ago

MODERATORS

AgreeableLandscape@lemmy.ml

nooter692@lemmy.ml

MarcellusDrum@lemmy.ml

cypherpunks@lemmy.ml

cyclohexane@lemmy.ml

d3Xt3r@lemmy.nz

Is it safe to assume that all apps from the software store (Discover in my case) are safe? (lemmy.org)

submitted 1 day ago by Cekan14@lemmy.org to c/linux@lemmy.ml

35 comments fedilink hide all child comments

Hi, there!

Newbie question here: basically, the title. Perhaps what I'm asking is pretty obvious, but I'd like to double-check with the community on this.

I use Discover on my Debian KDE Plasma set-up, with Flatpaks enabled (but not Snaps). Sometimes, I come across apps (I did just yesterday, searching for translation apps to replace DeepL), that have according to its page, an unknown author and, sometimes, even an unkown licence, but which do require access permission to the whole system (this latter requirement applying specifically to Deb packages, from what I've seen).

Under these circumstances, is it safe to assume that such apps will still be safe because of the fact that they appear listed on Discover (in other words, is Discover a guarantee of safety for the apps it shows, as in, some type of checked or proved content), or should I still be wary of potentially malicious software included on it?

Thank you very much in advance :)

you are viewing a single comment's thread
view the rest of the comments

[–] limelight79@lemmy.world 9 points 1 day ago (3 children)

I think you are thinking of this.

But, more recently, this should make anyone who is concerned about security shudder. And it was only discovered because some guy in Germany noticed ssh logins were taking a bit longer than in previous versions.

[–] regedit@lemmy.zip 2 points 16 hours ago (1 children)

The YT channel Veritassium recently did a video going into more depth about the SSH thing. Was interesting!

[–] limelight79@lemmy.world 5 points 14 hours ago

Yeah, I watched that. I mostly already knew the story, but it was a great video anyway. And...extremely disturbing. Whoever it was will learn from the mistakes of this attempt...

It can be frustrating, but Debian's policy against binary blobs was a smart decision. I've run into it for glances web interface, and it's easy enough to decide I'm okay with installing it (and hopefully glances revises their release to address the issue), but removing them by default is smart.

[–] DataCrime@lemmy.dbzer0.com 3 points 21 hours ago (1 children)

Spot on, thanks for finding that. I wonder if there was ever a proof of concept or something like that. I installed my first copy of Slackware some time in the early 90… Maybe late 80s… it’s getting a bit fuzzy, I want to say that the kernel was pre 0.9.

One of the scariest things I had ever done, but I learned so much more about computers than I would have otherwise. Point being there was definitely some years between Ken’s article… still very much the era of viruses for the same of proving you could create something novel and powerful. We kept collections of them like weirdos that keep poisonous snakes 🐍

Anyway, it’s past grandpas bed time. Thanks again for finding the article, I’ll definitely have to do a bit more research… It was a super fun time in my life and I enjoyed remembering.

[–] limelight79@lemmy.world 1 points 14 hours ago

I thought he did do a proof of concept, but I could be wrong. It's been a while (many years) since I've read up on it.

My first Linux install was also Slackware, albeit Slackware 3.x, in the late 90s, while avoiding grad school work. I don't remember what kernel it used at that time. So if you're grampa, I guess I'm your son. :)

[–] AnnaFrankfurter@lemmy.ml 3 points 23 hours ago* (last edited 13 hours ago)

Just for anyone who doesn't know or is too lazy to click article. "Little bit longer" in this case means 300-500 milliseconds