• Opisek@piefed.blahaj.zone
    link
    fedilink
    English
    arrow-up
    2
    ·
    edit-2
    16 hours ago

    I mean, yes, if you can guarantee that all your software stack in 100% secure. In reality this is unfeasible on even mathematically impossible to do formally (reducible to the halting problem). So while bugs keep being found in things like the Linux kernel (naturally, nothing is immune to oversight), and they’re always going to be, keep your software up to date.

    • tomalley8342@lemmy.world
      link
      fedilink
      arrow-up
      1
      ·
      3 hours ago

      even mathematically impossible to do formally (reducible to the halting problem).

      Nah, if the programs are not arbitrary (and I hope they’re not, considering that you chose them) then it doesn’t reduce to that. But you are right that it is not feasible for most industries and he is right that in some industries it is not only feasible but required.

    • Jerkface (any/all)@lemmy.ca
      link
      fedilink
      English
      arrow-up
      1
      ·
      6 hours ago

      If security is the one and only priority, you wouldn’t be running a goddamn desktop environment and all that other baggage. You absolutely would be auditing your entire stack. Because security is the one and only priority. I didn’t pose the hypothetical, but that’s the necessary consequence.