[Boards: 3 / a / aco / adv / an / asp / b / bant / biz / c / can / cgl / ck / cm / co / cock / d / diy / e / fa / fap / fit / fitlit / g / gd / gif / h / hc / his / hm / hr / i / ic / int / jp / k / lgbt / lit / m / mlp / mlpol / mo / mtv / mu / n / news / o / out / outsoc / p / po / pol / qa / qst / r / r9k / s / s4s / sci / soc / sp / spa / t / tg / toy / trash / trv / tv / u / v / vg / vint / vip / vp / vr / w / wg / wsg / wsr / x / y ] [Search | Free Show | Home]

Ok so one of the benefits of FOSS is that it's not possible

This is a blue board which means that it's for everybody (Safe For Work content only). If you see any adult content, please report it.
  1. Home
  2. /g/ - Technology
  3. Ok so one of the benefits of FOSS is that it's not possible
Thread replies: 9
Thread images: 1

Anonymous
2016-08-28 15:00:58 Post No. 56305684
[Report] Image search: [Google]
File: 1464208419610.jpg (41KB, 449x600px) Image search: [Google]
1464208419610.jpg
41KB, 449x600px
Anonymous 2016-08-28 15:00:58 Post No. 56305684 [Report]
Ok so one of the benefits of FOSS is that it's not possible for devs to build in backdoors without the community noticing, right?
The thing is though that I don't download source code but packages already compiled by my distro's devs. So theoretically they could've altered the source code before compiling it.
Is the only way to be sure there are no backdoors in your OS/software built in by compiling everything yourself?
>>
Anonymous 2016-08-28 15:03:16 Post No.56305723
[Report]
Anonymous 2016-08-28 15:03:16 Post No.56305723 [Report]
>>56305684
>The thing is though that I don't download source code but packages already compiled by my distro's devs. So theoretically they could've altered the source code before compiling it.
Yes

>Is the only way to be sure there are no backdoors in your OS/software built in by compiling everything yourself?
You can also check the signature. Open source projects generally sign their binaries with some hash, you could check that the binaries in the package you download match those hashes.

It's not 100% guaranteed, but you also don't have any guarantees that your compiler doesn't insert malicious code into what you compile. There's always a possibility to become more tinfoil than you already are.
>>
Anonymous 2016-08-28 15:03:25 Post No.56305725
[Report]
Anonymous 2016-08-28 15:03:25 Post No.56305725 [Report]
>>56305684
what do they have to gain from putting backdoors in stuff?
the instant people found out, which would be easy, the devs would get fucked over
>>
Anonymous 2016-08-28 15:06:26 Post No.56305766
[Report]
Anonymous 2016-08-28 15:06:26 Post No.56305766 [Report]
Your hardware isn't free.

Software runs on top of hardware.

Ergo free software alone does not make you free.
>>
Anonymous 2016-08-28 15:11:38 Post No.56305839
[Report]
Anonymous 2016-08-28 15:11:38 Post No.56305839 [Report]
>>56305723
>You can also check the signature. Open source projects generally sign their binaries with some hash, you could check that the binaries in the package you download match those hashes.
Thanks for pointing this out

I'm not wearing a tinfoil hat yet, it's just something I've been wondering

>>56305725
idk, it would be easy for the NSA to secretly start their own distro

>the instant people found out, which would be easy, the devs would get fucked over
How could people find out?

>>56305766
Why isn't there a project that's developing free hardware?
>>
Anonymous 2016-08-28 15:13:43 Post No.56305864
[Report]
Anonymous 2016-08-28 15:13:43 Post No.56305864 [Report]
>>56305839
>How could people find out?
compiling shit themselves and checking signatures as >>56305723 stated

>>56305839
because open source hardware is expensive to develop and underpowered
and you don't really get to do anything fun like play games made in the last decade
>>
Anonymous 2016-08-28 15:17:01 Post No.56305913
[Report]
Anonymous 2016-08-28 15:17:01 Post No.56305913 [Report]
>>56305864
>compiling shit themselves and checking signatures as >>56305723 stated
Oh right, of course

Why is open source hardware underpowered?
>>
Anonymous 2016-08-28 15:19:28 Post No.56305952
[Report]
Anonymous 2016-08-28 15:19:28 Post No.56305952 [Report]
>>56305913
because no one has the money for it
go find some open hardware projects and see how underfunded they are

it's like via except 10x worse
>>
Anonymous 2016-08-28 15:22:42 Post No.56305992
[Report]
Anonymous 2016-08-28 15:22:42 Post No.56305992 [Report]
You can also build the packages yourself. Most distros make their packaging tools and package sources available for you to use yourself.
Thread posts: 9
Thread images: 1
[Boards: 3 / a / aco / adv / an / asp / b / bant / biz / c / can / cgl / ck / cm / co / cock / d / diy / e / fa / fap / fit / fitlit / g / gd / gif / h / hc / his / hm / hr / i / ic / int / jp / k / lgbt / lit / m / mlp / mlpol / mo / mtv / mu / n / news / o / out / outsoc / p / po / pol / qa / qst / r / r9k / s / s4s / sci / soc / sp / spa / t / tg / toy / trash / trv / tv / u / v / vg / vint / vip / vp / vr / w / wg / wsg / wsr / x / y] [Search | Top | Home]

I'm aware that Imgur.com will stop allowing adult images since 15th of May. I'm taking actions to backup as much data as possible.
Read more on this topic here - https://archived.moe/talk/thread/1694/


If you need a post removed click on it's [Report] button and follow the instruction.
DMCA Content Takedown via dmca.com
All images are hosted on imgur.com.
If you like this website please support us by donating with Bitcoins at 16mKtbZiwW52BLkibtCr8jUg2KVUMTxVQ5
All trademarks and copyrights on this page are owned by their respective parties.
Images uploaded are the responsibility of the Poster. Comments are owned by the Poster.
This is a 4chan archive - all of the content originated from that site.
This means that RandomArchive shows their content, archived.
If you need information for a Poster - contact them.