379
rule (lemm.ee)
submitted 2 months ago by Irelephant@lemm.ee to c/196@lemmy.blahaj.zone
17 comments fedilink hide all child comments
top 17 comments
sorted by: hot top controversial new old
[-] uriel238@lemmy.blahaj.zone 62 points 2 months ago

No kink shaming.

It is super bad form for a commercial website to provide software with malware.

Although this happens sometimes when commercial hosts get hacked and have their copies intentionally corrupted. I think the internet has had more than one epidemic, killing the whole download from sources you trust advisory.

Also some types of malware like adware and spyware are more commonly accepted.

[-] TropicalDingdong@lemmy.world 19 points 2 months ago

I mean. What you gonna gate keep for new grounds back in 99 too?

You either have open systems where yes, some people can do bad things, but people have access and can do cool things, or you make it more exclusive safer less creative less accessible.

You don't get both.

[-] RandomVideos@programming.dev 4 points 2 months ago

Isnt adware a program that shows you ads outside of itself?

Are there trusted apps that add ads to internet explorer or your taskbar?

[-] uriel238@lemmy.blahaj.zone 1 points 2 months ago

I don't trust them. But some established software hosts provide them.

Ads are a security hazard themselves and a vector for malware, and people have gotten infected from the Forbes site without adblocking, so yeah, it's a risk. USUALLY the site / developer will report that it's adware so you can make that choice, which makes it slightly less unethical.

[-] RandomVideos@programming.dev 3 points 2 months ago

Do you have any examples?

Its really bad if apps that are allowed on established software hosts modify other apps to put ads in them

[-] BangersAndMash@lemmy.world 4 points 2 months ago

Do you remember the bad old days when you'd go to someone's house and their browser would be unusable because it had so many toolbars installed? That was often from legit sites bundling crap into installers for software they hosted.

[-] bjoern_tantau@swg-empire.de 59 points 2 months ago

There's literal shit on itch.

[-] sleen@lemmy.zip 23 points 2 months ago

Damn that game is liquid shit.

[-] finitebanjo@lemmy.world 51 points 2 months ago

Do they actually check for viruses, though? I never even thought about it. I always do a VirusTotal run on anything I download from anywhere.

[-] unexposedhazard@discuss.tchncs.de 29 points 2 months ago* (last edited 2 months ago)

Antivirus checking isnt really a thing. It protects only against known, old and basic malware. How would you test for something that isnt known....

[-] finitebanjo@lemmy.world 57 points 2 months ago

Pretty sure unknown new vulnerabilities would be used to exploit things like banks and industry, not little timmy's first porngame, but I guess it's all a statistical outcome.

[-] bjoern_tantau@swg-empire.de 24 points 2 months ago

You don't need any special vulnerabilities to encrypt all of the user's files or to use their computer as cloud storage for your kiddie porn or to use their computer for a DDOS or to use it as a VPN endpoint or to mine shitcoins or a thousand other things I'm too tired to think of. Little Timmy just has to get creative.

[-] finitebanjo@lemmy.world 6 points 2 months ago

I was implying Little Timmy was downloading porn not creating porn.

[-] bjoern_tantau@swg-empire.de 15 points 2 months ago

I believe in Little Timmy. He can do anything he sets his mind to. He shall create the most depraved porn game the world has ever seen and in turn wield the mightiest botnet to ever conquer the web!

[-] ByteOnBikes@slrpnk.net 2 points 2 months ago

I'm mentally trying to process how that would work.

I'm pretty sure you can literally upload anything. Like I bet I can make a quick game called "I'll erase your hard drive" and the first thing you do is allow me to get admin/sudo access.

And that might live in itch until it's manually removed. (As opposed to automatically)

[-] finitebanjo@lemmy.world 3 points 2 months ago* (last edited 2 months ago)

Technically it is not a malicious program if it asks for permission (and for added security add a nonliability statement the users agree to).

How it would work is if somebody uploads something the server does a virus check with any kind of antimalware and then any known worms or trojans do not get visibility or just explicitly do not get published at all.

[-] ZILtoid1991@lemmy.world 2 points 2 months ago

Likely they do testing for known stuff, you can even get premade malware to attach to your exe files. The main problem is the more custom stuff, which is hard to test for, especially with code obfuscation.

this post was submitted on 15 Dec 2024
379 points (98.7% liked)

196

17019 readers
671 users here now

Be sure to follow the rule before you head out.

Rule: You must post before you leave.

^other^ ^rules^

If you have any questions, feel free to contact us on our matrix channel.

founded 2 years ago
MODERATORS
moss@lemmy.blahaj.zone
greembow@lemmy.blahaj.zone
moss@lemmy.world
queue@beehaw.org
funky_rodent@lemmy.blahaj.zone
PeachyMcPeachface@lemmy.blahaj.zone
threegnomes@lemmy.blahaj.zone
greembow@lemmy.world
remotelove@lemmy.ca
Roflmasterbigpimp@feddit.de
A_Very_Big_Fan@lemm.ee
qaz@lemmy.blahaj.zone
A_Very_Big_Fan@lemmy.world
qaz@lemmy.sdf.org
qaz@lemmy.world
qaz@sh.itjust.works