this post was submitted on 03 Sep 2023
-104 points (15.8% liked)
Linux
48356 readers
473 users here now
From Wikipedia, the free encyclopedia
Linux is a family of open source Unix-like operating systems based on the Linux kernel, an operating system kernel first released on September 17, 1991 by Linus Torvalds. Linux is typically packaged in a Linux distribution (or distro for short).
Distributions include the Linux kernel and supporting system software and libraries, many of which are provided by the GNU Project. Many Linux distributions use the word "Linux" in their name, but the Free Software Foundation uses the name GNU/Linux to emphasize the importance of GNU software, causing some controversy.
Rules
- Posts must be relevant to operating systems running the Linux kernel. GNU/Linux or otherwise.
- No misinformation
- No NSFW content
- No hate speech, bigotry, etc
Related Communities
Community icon by Alpár-Etele Méder, licensed under CC BY 3.0
founded 5 years ago
MODERATORS
you are viewing a single comment's thread
view the rest of the comments
view the rest of the comments
This is the warning:
tbh assuming automatically open source software is more secure is false, At least one link which mentioned studies said that open source probably does not always "outperform" closed source software in term of security.
Some might argue that having a paid team means better security, So i don't know if the warning about security is really justified, and it might give people a bad impression about flathub (that it is being dogmatic), at least link to some page providing a more detailed explanation would be better (and might prevent new FOSS users from getting a false sense of security).
No one claimed it was more secure
They claimed that if you needed to vett it for specific vulnerabilities, you were capable of doing so
And the song and dance about “open source isn’t more secure” is meaningless, as you don’t care about security the same way in all applications, and the ones trivial enough not to care about are going to be by and large open source
(Assuming their data collection methods were even adequate, as by definition they could only vett the open source half of the claim. We know for a fact that proprietary software routinely buries or hides vulnerabilities unless forced to do otherwise)