As a packager, I totally relate to this: we generally don’t have the resources to follow the upstream development of the projects we rely on, let alone audit all the changes they make between releases. Open source software still has security advantages — we can communicate directly with the maintainers, backport security fixes and immediately release them to users, fix bugs that affect the distribution, etc. — but I agree that it’s not a silver bullet.
tedgravy
Firmware guy!
- 0 Posts
- 2 Comments
Joined 2 years ago
Cake day: June 8th, 2023
You are not logged in. If you use a Fediverse account that is able to follow users, you can follow this user.
Hell yeah. Few things are more satisfying than sliding a MiniDisc into a drive and feeling it click into place.