this post was submitted on 23 May 2024
94 points (98.0% liked)
Programming
17423 readers
41 users here now
Welcome to the main community in programming.dev! Feel free to post anything relating to programming here!
Cross posting is strongly encouraged in the instance. If you feel your post or another person's post makes sense in another community cross post into it.
Hope you enjoy the instance!
Rules
Rules
- Follow the programming.dev instance rules
- Keep content related to programming in some way
- If you're posting long videos try to add in some form of tldr for those who don't want to watch videos
Wormhole
Follow the wormhole through a path of communities !webdev@programming.dev
founded 1 year ago
MODERATORS
you are viewing a single comment's thread
view the rest of the comments
view the rest of the comments
At the same time it's much easier to sue a company you know compared to LollipopCat35 from GitHub
I feel like if the main advantage of something is that it's easy to sue, it's probably a bad choice to begin with. Instead, your criteria should probably be more about minimizing the chance of things going that wrong.
Free Software has an important advantage on that front too, by the way: you have the recourse of being allowed to fix it yourself. That is kinda the whole point of why RMS invented it in the first place, after all!
Minimizing the chance of things going that wrong... So not trusting anonymous people on the internet?
How many FOSS users are actually able to understand or fix the programs they use? Do you systematically check the code of everything you get from GitHub?
I understand the principle and I do use FOSS, I just don't make myself believe that more than a ridiculously small minority of people actually check the code of what they're installing.
@Kecessa @grue knowing that the source will be published discourages bad actors from putting crap into the program in the first place.
And if they do it anyway, other people can come along and repackage it without the bad bits, like vscodium.
That's as long as someone takes the time to check the code, that's my whole point.
There's torrents with malware that are well seeded even though you can see comments from people saying they're infected, people don't care and you over estimate people's capacities if you think the majority understands what they're installing when downloading stuff online, as long as it fills its purpose, they'll never know that they just installed a crypto miner without realizing it.
@Kecessa no you missed my point. You change the behaviour of the producer, not the consumer.
People are publishing programs anonymously! They don't care about it, there's no consequence to it.
Hell, that's like believing the introduction of a prison system stops all crime. People just try to find better ways to hide.