๐Ÿ’พ Archived View for bbs.geminispace.org โ€บ u โ€บ norayr โ€บ 14273 captured on 2024-08-31 at 14:14:56. Gemini links have been rewritten to link to archived content

View Raw

More Information

โฌ…๏ธ Previous capture (2024-08-18)

-=-=-=-=-=-=-

Comment by ๐Ÿ™ norayr

Re: "How do you install your Internet browsers?"

In: u/leoperbo

interesting.

i think i trust repository binaries much more than binaries from even mozilla.

on the number, i don't know what is their case, but i had to use wrong, and more up to date number recently for lagrange, in maemo-leste repos. because i was changing its cmakelists.txt file, and for the builder it is part of the original source. so when i realized i need to make more changes in that file, the builder refused, since then the fingerprint of the _orig package changed, while version didn't.

so i had to bump up version and i mentioned it in the commit or somewhere that that's a fake version which doesn't exist yet, but i had not other choice. well the choise was to be wiser, eh.

๐Ÿ™ norayr

Jan 23 ยท 7 months ago

Poll Results

1. Download binaries and place them in a standard path for programs

โ–ˆโ–ˆโ–โ–โ–โ–โ–โ–โ–โ–โ–โ–โ–โ–โ–โ–โ–โ–โ–โ–โ–โ–โ–โ– 8%

2. Download binaries and place them in a custom path

โ–ˆโ–ˆโ–โ–โ–โ–โ–โ–โ–โ–โ–โ–โ–โ–โ–โ–โ–โ–โ–โ–โ–โ–โ–โ– 10%

3. Download installer pack

โ–ˆโ–ˆโ–ˆโ–โ–โ–โ–โ–โ–โ–โ–โ–โ–โ–โ–โ–โ–โ–โ–โ–โ–โ–โ–โ– 12%

4. Via repository

โ–ˆโ–ˆโ–ˆโ–ˆโ–ˆโ–ˆโ–ˆโ–ˆโ–ˆโ–ˆโ–ˆโ–ˆโ–โ–โ–โ–โ–โ–โ–โ–โ–โ–โ–โ– 50%

5. Via flatpak

โ–ˆโ–ˆโ–โ–โ–โ–โ–โ–โ–โ–โ–โ–โ–โ–โ–โ–โ–โ–โ–โ–โ–โ–โ–โ– 8%

6. Via snap

โ–ˆโ–โ–โ–โ–โ–โ–โ–โ–โ–โ–โ–โ–โ–โ–โ–โ–โ–โ–โ–โ–โ–โ–โ– 5%

7. Via AppImage

โ–ˆโ–โ–โ–โ–โ–โ–โ–โ–โ–โ–โ–โ–โ–โ–โ–โ–โ–โ–โ–โ–โ–โ–โ– 3%

8. Download source and compile

โ–ˆโ–โ–โ–โ–โ–โ–โ–โ–โ–โ–โ–โ–โ–โ–โ–โ–โ–โ–โ–โ–โ–โ–โ– 3%

60 votes were cast.

6 Later Comments โ†“

๐Ÿ™ norayr ยท 2024-01-23 at 11:36:

i just have this general trust in repository software. i believe it is much much harder to have malicious code in them, than in, of course, let's say nodejs or rust repos. and in waterfox tar.gz binary files that i was downloading.

and sometimes, when i have no other choice than to try something binary, i try it from chroot, or at least from other user.

i became paranoid a little bit too much than it worth it, after using waterfox, and rebuilt every single package i had. though i only ran waterfox as user, but i thought, well, maybe it used some vulnerability to get root privileges and contaminate something in the system. well i realized that's not probable. but still rebuilt everything.

๐Ÿ™ norayr ยท 2024-01-23 at 13:06:

and if it contaminated the compiler - it would not save me anyway, since the contaminated compiler would compile malicious code in to newer binaries.

โ€” see compiler backdoor section.

๐ŸŽต xavi ยท 2024-01-24 at 09:10:

LibreWolf is apparently still not available on Ubuntu Jammy repositories (long-time Kubuntu user here), so I install the AppImages on my $HOME, sometimes also wrap them around "firejail --private=<dir> --appimage" for a bit of extra security.

๐ŸŒง๏ธ miragearchitect ยท 2024-01-25 at 06:57:

I add it to the nixos config...

๐Ÿ“ท sjlxndr ยท 2024-01-25 at 17:48:

"via repository" but sometimes that means manually adding repositories, not just the OS defaults

๐Ÿ™ norayr ยท 2024-01-30 at 01:00:

librewolf is surprisingly lightweight.

Original Post

โ˜ฏ๏ธ leoperbo

How do you install your Internet browsers?

๐Ÿ’ฌ 24 comments ยท 1 like ยท Jan 21 ยท 7 months ago ยท ๐Ÿ—ณ๏ธ