who@feddit.org to Programming@programming.devEnglish · 6 days agoNotepad++ Hijacked by State-Sponsored Hackersnotepad-plus-plus.orgexternal-linkmessage-square59linkfedilinkarrow-up1300arrow-down11cross-posted to: opensource@lemmy.mltechnology@lemmy.worldfoss@beehaw.orgopensource@programming.devopensource@programming.devtechnology@lemmy.mlcybersecurity@infosec.pub
arrow-up1299arrow-down1external-linkNotepad++ Hijacked by State-Sponsored Hackersnotepad-plus-plus.orgwho@feddit.org to Programming@programming.devEnglish · 6 days agomessage-square59linkfedilinkcross-posted to: opensource@lemmy.mltechnology@lemmy.worldfoss@beehaw.orgopensource@programming.devopensource@programming.devtechnology@lemmy.mlcybersecurity@infosec.pub
minus-squarepiccolo@sh.itjust.workslinkfedilinkarrow-up9·edit-26 days agoThe point of signing software is to ensure the software was not tampered from the publisher. Linux package managers solve this by comparing a gpg key from the publisher with the software’s. There is no need for a corporate giant to “vet” software.
minus-squarelad@programming.devlinkfedilinkEnglisharrow-up1·5 days agoI guess, the point was there’s nothing doing that in windows, and you will have to check manually or use an expensive M$ certificate
The point of signing software is to ensure the software was not tampered from the publisher. Linux package managers solve this by comparing a gpg key from the publisher with the software’s. There is no need for a corporate giant to “vet” software.
I guess, the point was there’s nothing doing that in windows, and you will have to check manually or use an expensive M$ certificate