Embed Notice

HTML Code

<blockquote style="position: relative; padding-left: 55px;"><section><a href="https://fosstodon.org/users/drewdevault/statuses/111334177186909116">Drew DeVault (drewdevault@fosstodon.org)'s status on Wednesday, 01-Nov-2023 18:52:22 JST</a><a href="https://fosstodon.org/@drewdevault" title="drewdevault@fosstodon.org"><img src="https://gnusocial.jp/avatar/55465-48-20221206192441.webp" width="48" height="48" alt="Drew DeVault" style="position: absolute; left: 0; top: 0;">Drew DeVault</a></section><article><p><a href="https://social.treehouse.systems/@marcan">@marcan</a> <br>TLS provides privacy but not integrity. In case of a server-side exploitation, or simply memory corruption for any other reason ECC failures are not nearly as uncommon as anyone would like to believe!), TLS provides nothing.</p><p>In general this practice to installing software with curl | sh is a huge side-step around all of the security and trust that comes built-in to the system package manager, and tends to litter your system with stuff the package manager doesn't know about -- [cotd]</p></article><footer><a rel="bookmark" href="https://gnusocial.jp/conversation/2263519#notice-4460776">In conversation</a><time datetime="2023-11-01T18:52:22+09:00" title="Wednesday, 01-Nov-2023 18:52:22 JST">about a year ago</time> <span>from <span><a href="https://fosstodon.org/@drewdevault/111334177186909116" rel="external" title="Sent from fosstodon.org via ActivityPub">fosstodon.org</a></span></span><a href="https://fosstodon.org/@drewdevault/111334177186909116">permalink</a><h4>Attachments</h4><ol><li><label><a rel="external" href="https://gnusocial.jp/attachment/1639547">Untitled attachment</a></label><br></li></ol></footer></blockquote>

Corresponding Notice

Embed this notice
Drew DeVault (drewdevault@fosstodon.org)'s status on Wednesday, 01-Nov-2023 18:52:22 JST Drew DeVault
@marcan
TLS provides privacy but not integrity. In case of a server-side exploitation, or simply memory corruption for any other reason ECC failures are not nearly as uncommon as anyone would like to believe!), TLS provides nothing.
In general this practice to installing software with curl | sh is a huge side-step around all of the security and trust that comes built-in to the system package manager, and tends to litter your system with stuff the package manager doesn't know about -- [cotd]
In conversationabout a year ago from fosstodon.orgpermalink
Attachments
1. Untitled attachment

Public

Embed Notice

HTML Code

Corresponding Notice