• korstmos@kbin.social
    link
    fedilink
    arrow-up
    156
    arrow-down
    1
    ·
    1 year ago

    Because paying a few grand a year for a certificate somehow makes your software more trustworthy

    • RippleEffect@lemmy.world
      link
      fedilink
      arrow-up
      21
      arrow-down
      2
      ·
      1 year ago

      Well it at least is an obstacle. Broke hackers won’t get it or will have to work harder to get around it.

      • Ddhuud@lemmy.world
        link
        fedilink
        arrow-up
        41
        ·
        1 year ago

        That’s the intention. In reality lots of genuine devs can’t afford it, so people get accustomed to just ignore the whole thing.

    • ryannathans@lemmy.fmhy.net
      link
      fedilink
      arrow-up
      10
      ·
      1 year ago

      Even more lols when you are gigabyte and your private key leaks. Also when you are gigabyte and your signed driver is used to privilege escalate malware.

    • smolyeet@lemmy.world
      link
      fedilink
      English
      arrow-up
      7
      arrow-down
      3
      ·
      1 year ago

      And that’s why certificates can be revoked, that’s the whole point, trust. It only costs a few hundred a year per Microsoft’s documentation and approved vendors so it doesn’t seem that much of an ask. At the very least you can look up the developer yourself, harder to do if the package has no identity associated with it

  • Zozano@aussie.zone
    link
    fedilink
    arrow-up
    84
    arrow-down
    4
    ·
    edit-2
    1 year ago

    Linux: OK

    User: Oh great, I downloaded a virus

    Linux: Lol. You should have read the 2000-line python script on github before running it.

    • pufferfischerpulver@feddit.de
      link
      fedilink
      arrow-up
      53
      arrow-down
      3
      ·
      1 year ago

      Actually there’s extensive documentation on the arch wiki regarding this specific line of code burried 1673 lines deep.

      I suggest you read the documentation before you ask irrelevant and, might I add, embarrassing questions.

  • ephemerality@lemmy.world
    link
    fedilink
    English
    arrow-up
    66
    ·
    1 year ago

    I wrote some open source software and looked into how to make that not happen. It’s not easy on Microsoft, and on Apple it costs more than a $100/year!

  • Fuzzy_Dunlop@lemm.ee
    link
    fedilink
    arrow-up
    37
    arrow-down
    2
    ·
    1 year ago

    I can navigate Windows well enough for my job, but I’d never choose it for personal use. I’m no Linux expert, but I haven’t yet been faced with a problem I couldn’t solve.

    • Hazzia@discuss.tchncs.de
      link
      fedilink
      arrow-up
      13
      ·
      edit-2
      1 year ago

      I wish I were you. I’m constantly running into problems that I either can’t solve, or end up spending way more time on than it’s probably worth. My last Geruda linux install became unbootable because I tried to change the system font to a different existant preset. The error I got, of course, only had 2 prior instances referenced on Le Google, both of which were in completely different contexts than mine such that either the recommended fix did not work, or I didn’t have the tools available to follow it.

      I’m still not switching back to Windows though because fuck 'em.

      • mfn@mfn.pub
        link
        fedilink
        arrow-up
        20
        ·
        edit-2
        1 year ago

        I think your problem is you are using a niche Arch derivative that has a small user base. You should definitely consider using more mainstream distros so you can easily find the help you need until you are comfortable and feel confident with using Linux.

      • nomadjoanne@lemmy.world
        link
        fedilink
        arrow-up
        11
        ·
        1 year ago

        I’d use a mainstream distro. I came to Linux in 2017, used Ubuntu for 4 years until I got tired of them forcing snaps down my throat, and then went to Arch. I have never distro-hopped, but I also have never had any huge issues with the mainstream distros.

        The main distros really are well maintained and do tend to “just work”. Dare I say, especially Ubuntu.

    • ⁧⁧⁧@lemmy.world
      link
      fedilink
      English
      arrow-up
      12
      arrow-down
      1
      ·
      1 year ago

      I’m the exact opposite! Use Windows for personal use, and use Linux for my VMs/Servers/Docker.

    • svartkaffi@fedia.io
      link
      fedilink
      arrow-up
      3
      ·
      1 year ago

      I was taught to use Ubuntu Linux by a middle aged engineer in another field who demanded “the brown operating system” on his computer over a decade ago, so yes, I agree, day to day Linux hasn’t been hard for over a decade.

  • deweydecibel@lemmy.world
    link
    fedilink
    English
    arrow-up
    38
    arrow-down
    8
    ·
    edit-2
    1 year ago

    This will be outdated soon.

    They basically admitted at a security conference (I think) that part of the roadmap for Windows 11 is to actually prevent Windows from running unsigned apps period, and you better believe getting past that will require an Enterprise license.

    • nomadjoanne@lemmy.world
      link
      fedilink
      arrow-up
      29
      ·
      1 year ago

      If true ew. I actually just recently learned that Windows 11 requires a Microsoft account (you can disable it by going into the registry) but it officially actually requires it. Fuck them.

      • provomeister@lemmy.ca
        link
        fedilink
        arrow-up
        16
        ·
        1 year ago

        No registry edit necessary. Just use the email no[at]thankyou.com, write any password. Windows will throw an error, press continue and voilà, you can create your local account.

        Rufus also has an option for local accounts and for removing TPM/SecureBoot requirements.

      • Johanno@lemmy.fmhy.net
        link
        fedilink
        arrow-up
        2
        ·
        1 year ago

        Well you can log in without one, but that requires many unintuitive steps.

        For example one of them is to login with wrong Account information.

      • DigitalBits@programming.dev
        link
        fedilink
        arrow-up
        2
        ·
        1 year ago

        I don’t think you need to with either a professional or enterpriese account (I think professional). Do need to with a home account though which is extremely annoying.

      • Fish [Indiana]@midwest.social
        link
        fedilink
        English
        arrow-up
        14
        ·
        1 year ago

        I definitely need a source on this. I searched online and couldn’t find anything. If this is true, I feel like it’s the one thing that might actually cause some people to move to Linux.

        • salient_one@lemmy.villa-straylight.social
          link
          fedilink
          English
          arrow-up
          10
          ·
          edit-2
          1 year ago

          There’s no reason for Microsoft to do that. That will just alienate existing Windows users enough to try other OSes while providing no benefit whatsoever to the corporation. Even Apple, which is known for its love of walled gardens, allows executing unsigned code in MacOS. So I very much doubt we’ll get a source.

        • average650@lemmy.world
          link
          fedilink
          English
          arrow-up
          3
          ·
          1 year ago

          I feel like it would get much better a mistake if they did… I use both windows and Linux now. I would rather use Linux full time but some software, specifically office and some (not most, but a few) don’t play nice with Linux.

          If I just lost a ton of programs that I would say are critical for windows, no doubt I switch full time unless my work prevents me.

  • brlemworld@lemmy.world
    link
    fedilink
    arrow-up
    20
    arrow-down
    7
    ·
    1 year ago

    Mac does it now too. But they do it because they are anti-competitive and want to make you use the Mac app Store. They need to be broken up.

      • narp@feddit.de
        link
        fedilink
        English
        arrow-up
        7
        arrow-down
        2
        ·
        edit-2
        1 year ago

        It has of course nothing to do with the enormous amount of money they rake through their app store by squeezing both the developers and the users.

        Why would they try to force people to only use the store by implementing more and more security features along the way!?

        It’s a mystery!

        • lorez@lemm.ee
          link
          fedilink
          arrow-up
          2
          arrow-down
          1
          ·
          1 year ago

          But they don’t force you. I installed Pianoteq 8 downloading it from the official site, not the App Store. All it asks is your touchID or the password.

        • StenSaksTapir@feddit.dk
          link
          fedilink
          arrow-up
          1
          arrow-down
          2
          ·
          1 year ago

          Because users, largely, are stupid.

          Security usually comes at the price of inconvenience.

          You’re not forced to use the app store by any means and if you find it difficult not to, then you’re probably the type of user they want to protect.

  • CandyDumDub@lemm.ee
    link
    fedilink
    English
    arrow-up
    11
    arrow-down
    1
    ·
    1 year ago

    Let’s make it clear. The only virus on a PC is its owner. It never emerges on itself

  • haruki@programming.dev
    link
    fedilink
    arrow-up
    4
    arrow-down
    1
    ·
    1 year ago

    Actually this is a good practice. If you don’t know where the program is or if the source is not open, you shouldn’t install blindly.