User's banner
Avatar

cqst

cqst@lemmy.blahaj.zone
Joined
0 posts • 23 comments
Direct message
Filter:
OverviewPostsComments
Sort:
NewOldTopAll
Avatar
cqst@lemmy.blahaj.zone
-2 points
*
in linux@lemmy.mlI made a local APT repository that automatically fetches DEBs and AppImages from anywhere

Well, I’m just automating what people currently have to do manually : visit GitHub and download DEB and install DEB.

Yeah. You should never do that. Like ever. Build from source; or use a vendored tarball. https://wiki.debian.org/DontBreakDebian

.deb is a terribly insecure nightmare thats held up by the excellent debian packagers, gpg , and checksums, and stable release model. don’t use .deb files.

permalink
report
parent
reply
Avatar
cqst@lemmy.blahaj.zone
-2 points
*
in linux@lemmy.mlI made a local APT repository that automatically fetches DEBs and AppImages from anywhere

I’m and end user

Yeah, we all are. What’s your point?

End users are also developers. All computer users are developers. You are developing.

user working for end users

By making a script that lets me get backdoors and shitty packages with ease? The linux package distribution system is a nightmare, Debian is the least bad approach. There is basically always a better option to using a .deb file. If you come across something that isn’t packaged, I recommend Flatpak, building from source (and installing unprivileged), or using the developers vendored tarball (installing unprivileged).

https://wiki.debian.org/SecureApt

By using local .debs you lose the benefit of:

Reproducible builds

GPG checksums

Stable release model

debian security team

permalink
report
parent
reply
Avatar
cqst@lemmy.blahaj.zone
-2 points
in linux@lemmy.mlI made a local APT repository that automatically fetches DEBs and AppImages from anywhere

If you are getting your code straight from the author,

Which is not what you are doing at all with a .deb file. A .deb file is a binary with a bunch of scripts to “properly” install your package. Building from source is what you SHOULD be doing. Debian has an entire policy handbook on how packages are supposed to be packaged. Progrmatically you can review the quality of a package with ‘lintian’. .debs made by developers following a wiki tutorial can’t even come close. remember, apt installs happen as root and can execute arbitrary code.

Also, debian packagers can be project maintainers, so they can be “the author.”

permalink
report
parent
reply
Avatar
cqst@lemmy.blahaj.zone
-1 points
in lemmyshitpost@lemmy.worldProtect your PC

Sadly, you should feel alienated. When you choose to use proprietary software, you further the injustice that it creates over society. Windows is so shamefully harmful, even outside of just being proprietary that choosing it in 2024 is choosing the side of unjust power, and you should be rightfully alienated for making that decision.

permalink
report
parent
reply
Previous pageNext page