187
submitted 1 year ago by adonis@kbin.social to c/linux@lemmy.ml

Canonical are currently dealing with a security incident with the Snap store, after users noticed multiple fake apps were uploaded so temporary limits have been put in place.

you are viewing a single comment's thread
view the rest of the comments
[-] cmhe@lemmy.ml 32 points 1 year ago

I dislike the snap store as well, but what you describe is how packaging works on Debian as well. Anyone can make, maintain a package. And there are people there that maintain even more packages.

However, there is a difference when uploading it to the repos, you either have to be a Debian developer or find one to sponsor your package first. After a while of doing good work, you can also request becoming one yourself.

This additional burden makes it more difficult for malicious people to go through.

Personally I prefer this separation of software developer and package maintainer, because that makes it a bit more difficult for malicious devs to push packages directly or for them to not package them the optimal way for the distro.

[-] wiki_me@lemmy.ml 11 points 1 year ago

I think that in practice it prevents them completely, i never heard of any type malware uploaded to debian or nix and flathub for that matter.

[-] possiblylinux127@lemmy.zip 2 points 1 year ago

I guess its a reminder to verify your apps

this post was submitted on 02 Oct 2023
187 points (97.0% liked)

Linux

48376 readers
1793 users here now

From Wikipedia, the free encyclopedia

Linux is a family of open source Unix-like operating systems based on the Linux kernel, an operating system kernel first released on September 17, 1991 by Linus Torvalds. Linux is typically packaged in a Linux distribution (or distro for short).

Distributions include the Linux kernel and supporting system software and libraries, many of which are provided by the GNU Project. Many Linux distributions use the word "Linux" in their name, but the Free Software Foundation uses the name GNU/Linux to emphasize the importance of GNU software, causing some controversy.

Rules

Related Communities

Community icon by Alpár-Etele Méder, licensed under CC BY 3.0

founded 5 years ago
MODERATORS