Snap and modern software (was: Remove /snap directory)
Ralf Mardorf
kde.lists at yahoo.com
Thu Dec 15 00:13:54 UTC 2022
On Wed, 2022-12-14 at 14:04 -0600, Keith wrote:
> But really your concern is equally applicable to any source of software
> distribution. How you do protect yourself from bad packages hosted in an
> anonymous PPA? How do you protect yourself from bad Android apps that
> are in Google's PlayStore? For that matter, how do you protect yourself
> from any bad packages in the Ubuntu archives? There's literally
> thousands of packages in the combined repos. Can you ever be sure that a
> few of those don't contain malware/spyware or just badly written
> pre/post install scripts that can trash your system because they're
> executed with root privileges? Do you vet every package that you install
> on your system to make sure its not doing anything weird? Do you trust
> your kernel?
100 binaries can share the same 10 shared libraries or
100 binaries can use 100 different versions of each of those 10
libraries.
So your claim is, that checking the integrity of 100 * 10 = 1000
libraries is not harder to do, than checking the integrity of 1 * 10 =
10 libraries?
More information about the ubuntu-users
mailing list