92
submitted 4 months ago* (last edited 4 months ago) by graphito@sopuli.xyz to c/foss@beehaw.org

cross-posted from: https://jlai.lu/post/8476122

Zed on Linux is out!

you are viewing a single comment's thread
view the rest of the comments
[-] tesseract@beehaw.org 5 points 4 months ago

You are right, except for one detail. Package managers almost always validate the packages using digital signatures, to avoid man-in-the-middle attacks. You don't need to trust the network anymore. Shell scripts piped to a shell don't have that protection. You still have to trust the developers and maintainers, though.

[-] msage@programming.dev 2 points 4 months ago

Shell scripts have md5 signatures

this post was submitted on 10 Jul 2024
92 points (100.0% liked)

Free and Open Source Software

17729 readers
4 users here now

If it's free and open source and it's also software, it can be discussed here. Subcommunity of Technology.


This community's icon was made by Aaron Schneider, under the CC-BY-NC-SA 4.0 license.

founded 2 years ago
MODERATORS