![](https://discuss.online/pictrs/image/8db33aaf-1538-498d-953e-0f8b9357fc8d.jpeg)
![](https://lemmy.ml/pictrs/image/q98XK4sKtw.png)
Thankfully we don’t have to follow the dumb Android security model on desktops.
on Qubes we still have security through compartmentalization, yet all systems have root access (even passwordless sudo)
Thankfully we don’t have to follow the dumb Android security model on desktops.
on Qubes we still have security through compartmentalization, yet all systems have root access (even passwordless sudo)
Many developers sign their AppImages, but its up to you to verify it
Yet curiously they’re far more secure. Huh.
Checksums are not for authenticity, and link me to the docs that indicates that ostree’s optional encryption is enforced in flatpak
Apt or distro package manager of choice.
Wait till you learn that your flatpak client doesn’t verify anything it downloads
I once made a cloud filesystem that used tweets encoded with base64 as a back end storage
If it ain’t broke, don’t fix it
Considetng flatpak doesn’t verify the authenticity of what it downloads, all flatpak users should just expect that what they download is a virus
Nah. Most distro package managers verify their packages authenticity with cryptography since the early noughts
Great opportunity to inject malware to so many vulnerable peeps then
Onionshare or syncthing
That’s why they put their public key fingerprint on many distinct domains, and users can import them and pin them. Flatpak doesn’t support this. Apt does.
Yep, and that’s not a problem
Sorry I tried to download bwrap but I got a virus because flatpak doesn’t verify anything that it downloads with cryptography
Security. Use apt
Bought a $2,000 laptop. Broke after about 10 days of light use.
They only works within some months. People have waited on Purism for years.
Allegations are real. It took them about a year to give me mine, and I only got ~60% back
No