this post was submitted on 31 Mar 2024
411 points (96.8% liked)

Linux

48363 readers
603 users here now

From Wikipedia, the free encyclopedia

Linux is a family of open source Unix-like operating systems based on the Linux kernel, an operating system kernel first released on September 17, 1991 by Linus Torvalds. Linux is typically packaged in a Linux distribution (or distro for short).

Distributions include the Linux kernel and supporting system software and libraries, many of which are provided by the GNU Project. Many Linux distributions use the word "Linux" in their name, but the Free Software Foundation uses the name GNU/Linux to emphasize the importance of GNU software, causing some controversy.

Rules

Related Communities

Community icon by Alpár-Etele Méder, licensed under CC BY 3.0

founded 5 years ago
MODERATORS
top 50 comments
sorted by: hot top controversial new old
[–] [email protected] 72 points 8 months ago

wanst that the whole damn (stated) point of making it proprietary?

[–] [email protected] 68 points 8 months ago (4 children)

I can recommend a minty flavored alternative if you're sick of it.

[–] [email protected] 22 points 8 months ago (5 children)

Green Ubuntu is Best Ubuntu

[–] [email protected] 7 points 7 months ago

A fresh breath of minty cinnamon, mate?

[–] [email protected] 7 points 7 months ago (1 children)

Btw I have no idea why they want to mix Mint with Cinnamon, must taste ugly.

[–] [email protected] 6 points 7 months ago (1 children)

Literally what I'm chewing right now. Its pretty okay.

[–] [email protected] 7 points 7 months ago (1 children)

I should do a "sorting DEs by their taste" meme

[–] [email protected] 5 points 7 months ago* (last edited 7 months ago)

Yeah, once you crunch down the edges its pretty good. Make sure to use optical rather than solid state tho.

[–] [email protected] 7 points 7 months ago (1 children)

I prefer some POP in my ubuntu, but green is flavorful.

load more comments (1 replies)
load more comments (2 replies)
[–] [email protected] 7 points 7 months ago (1 children)

I recommend Debian. Why go downstream when you can go upstream?

load more comments (1 replies)
load more comments (2 replies)
[–] [email protected] 57 points 8 months ago (1 children)
[–] [email protected] 36 points 8 months ago (72 children)
load more comments (72 replies)
[–] [email protected] 55 points 8 months ago (1 children)

Why just now? Meanwhile, all Debian packages on their apt repos are reviewed and maintained by Debian.

[–] AChiTenshi 28 points 8 months ago (4 children)

I would imagine the recent xz backdoor discovery spooked them a bit. So now they are going to check things.

We shall see if it continues or not.

[–] [email protected] 33 points 8 months ago

It was probably the wave of phishing apps that scared them tbh

[–] [email protected] 9 points 7 months ago

This predates that discovery.

[–] [email protected] 7 points 7 months ago (13 children)

No. They will likely still use release tarballs

load more comments (13 replies)
[–] [email protected] 6 points 7 months ago

Which means at all previous times, for 20 years, noone did check fck sht.

[–] [email protected] 29 points 8 months ago (1 children)

How is that not a security theater? , you just need to :

  • publish a good snap
  • change it to malware after it is approved
  • profit

The extra cost added to override this is fairly small, i don't think it will help.

[–] [email protected] 17 points 8 months ago (3 children)

At least this prevents impersonation of well-known publishers or their software. Maybe all changes to metadata like the description should require a manual review even for established packages.

load more comments (3 replies)
[–] [email protected] 28 points 8 months ago* (last edited 8 months ago)

Maybe adding a proprietary *layer to an open-source OS was a bad idea (for end users)?

[–] [email protected] 27 points 8 months ago* (last edited 8 months ago) (8 children)

I've heard all the arguments about how these new packaging formats are supposed to make things easy for developers and for users with different use cases than my own (apparently), but I will continue to avoid them until they have further matured. I'm relieved that this is still possible.

[–] [email protected] 19 points 8 months ago (1 children)

The idea is good I think but the implementation has only ever caused me problems and seems to have a bunch of frustrating edge cases.

[–] [email protected] 5 points 8 months ago* (last edited 8 months ago) (1 children)

I've been using snaps for a few years now and while they still could use some improvements, the snaps I'm currently using seem to be fairly indistinguishable from deb-based packaging thanks to bug fixes they have done over the years. I think the idea of containerized applications is a good one, I think it actually can be safer. Performance is also fine for me with snap applications even like Firefox snap startup speed, although I'm using an R9 5900x and Gen 4 M2 NVMe SSD so maybe that's why, or maybe they really have improved the snap software and it is just as fast now for the most part.

[–] [email protected] 5 points 7 months ago (1 children)

I've had to swap Firefox on my laptop for the deb package, the snap took like 5sec to open, whereas the deb opens instantly. Other than that, i don't see much of a difference, but i run into sandboxing issues quite often (same with flatpak though)

load more comments (1 replies)
load more comments (7 replies)
[–] [email protected] 18 points 8 months ago

Only took them 6 years of malware

[–] [email protected] 7 points 8 months ago

This is the best summary I could come up with:


After repeatedly suffering issues with scam apps making it onto the Snap Store, Canonical maker of Ubuntu Linux have now decided to manually look over submissions.

I've covered the issues with the Snap Store a few times now like on March 19th when ten scam crypto apps appeared, got taken down and then reappeared under a different publisher.

Also earlier back in February there was an issue where a user actually lost their wallet as a result of a fake app.

Multiple fake apps were also put up back in October last year as well, so it was a repeating issue that really needed dealing with properly.

So to try and do something about it, Canonical's Holly Hall has posted on their Discourse forum about how "The Store team and other engineering teams within Canonical have been continuously monitoring new snaps that are being registered, to detect potentially malicious actors" and that they will now do manual reviews whenever people try to register "a new snap name".

Hopefully this will begin to put an end to scam apps making it into the Snap Store and onto machines running Ubuntu and any other Linux distribution that enables Snap packages.


The original article contains 238 words, the summary contains 195 words. Saved 18%. I'm a bot and I'm open source!

load more comments
view more: next ›