who@feddit.org to Programming@programming.devEnglish · 1 day agoNotepad++ Hijacked by State-Sponsored Hackersnotepad-plus-plus.orgexternal-linkmessage-square57fedilinkarrow-up1272arrow-down12cross-posted to: opensource@lemmy.mltechnology@lemmy.worldtechnology@lemmy.ml
arrow-up1270arrow-down1external-linkNotepad++ Hijacked by State-Sponsored Hackersnotepad-plus-plus.orgwho@feddit.org to Programming@programming.devEnglish · 1 day agomessage-square57fedilinkcross-posted to: opensource@lemmy.mltechnology@lemmy.worldtechnology@lemmy.ml
minus-squarepiccolo@sh.itjust.workslinkfedilinkarrow-up8·edit-220 hours agoThe point of signing software is to ensure the software was not tampered from the publisher. Linux package managers solve this by comparing a gpg key from the publisher with the software’s. There is no need for a corporate giant to “vet” software.
minus-squarelad@programming.devlinkfedilinkEnglisharrow-up1·5 hours agoI guess, the point was there’s nothing doing that in windows, and you will have to check manually or use an expensive M$ certificate
The point of signing software is to ensure the software was not tampered from the publisher. Linux package managers solve this by comparing a gpg key from the publisher with the software’s. There is no need for a corporate giant to “vet” software.
I guess, the point was there’s nothing doing that in windows, and you will have to check manually or use an expensive M$ certificate