• corsicanguppy
    link
    fedilink
    arrow-up
    1
    arrow-down
    1
    ·
    8 months ago

    Like, what are we even suppose

    supposed

    to tell “normal people” about security? “Yeah, don’t download files from people you don’t trust and never run executables from the web. How do I install this programming utility? Blindly run code from over 300 people and hope none of them wanted to sneak something malicious in there.”

    You’re starting to come to an interesting realization about the state of ‘modern’ programming and the risks we saw coming 20 years ago.

    I don’t want to go back to the days […]

    You don’t need to trade convenience for safety, but having worked in OS Security I would recommend it.

    Pulling in random stuff you haven’t validated should feel really uncomfortable as a professional.