It’s really unbelievable at this point. It’s like that gentoo, meme, you have to compile your extension from sources. Even worse, as the ‘supply chain’ chain attack in ssh showed, you have to read the code yourself too. I am not sure if Linux becoming popular is a good thing anymore.
Comment on 4.3 Million Browsers Infected: Inside ShadyPanda's 7-Year Malware Campaign | Koi Blog
Fizz@lemmy.nz 1 week ago
So what’s the lesson? How can we trust browser extensions? Ublock could go bad and cook half the globe.
mal3oon@lemmy.world 1 week ago
Doomsider@lemmy.world 1 week ago
Security by obscurity isn’t security at all.
MalMen@masto.pt 1 week ago
@Fizz @homesweethomeMrL samething with everyrhing we use... You can go gentoo way and compile yourself the software you use, but even that way unless you check every line of code, you are trusting that the code behave the way you supose it does
Fizz@lemmy.nz 1 week ago
I really dont wanna do that. Firefox should add 3rd party repos so my distro packagers can handle that.