cm0002@lemdro.id to Linux@programming.devEnglish · 2 days agoSignal AppImage now officially available for Linuxaboutsignal.comexternal-linkmessage-square24fedilinkarrow-up1140cross-posted to: signal@lemmy.blahaj.zone
arrow-up1140external-linkSignal AppImage now officially available for Linuxaboutsignal.comcm0002@lemdro.id to Linux@programming.devEnglish · 2 days agomessage-square24fedilinkcross-posted to: signal@lemmy.blahaj.zone
minus-squareKSP Atlas@sopuli.xyzlinkfedilinkarrow-up20·1 day agoIMO flatpaks are a better option, appimages are just bringing people back to the insecure “find it on a website and download it” method of package management This is also one of the reasons why I dislike curl sh
minus-squarelukalix98@programming.devlinkfedilinkarrow-up6·1 day agoFlatpaks can be unsafe too though.
minus-squareMarija_@programming.devlinkfedilinkarrow-up2·11 hours agoI still prefer repositories, but official AppImages beat unofficial downloads.
minus-squareAudaciousArmadillo@piefed.blahaj.zonelinkfedilinkEnglisharrow-up5·14 hours agoSame goes for .debs from Debian stable. There is no absolute safety. But downloading unsigned code from a random website is far down the safe list.
minus-squarespectrums_coherence@piefed.sociallinkfedilinkEnglisharrow-up3·edit-213 hours agoAppImage defended and used grossly outdated core component like FUSE2 for a long time, and comes with zero sandboxing by default. IMO, flatpak needs to improve in terms of security, but it is a strict improvement over AppImage.
IMO flatpaks are a better option, appimages are just bringing people back to the insecure “find it on a website and download it” method of package management
This is also one of the reasons why I dislike curl sh
Flatpaks can be unsafe too though.
I still prefer repositories, but official AppImages beat unofficial downloads.
Same goes for .debs from Debian stable. There is no absolute safety. But downloading unsigned code from a random website is far down the safe list.
AppImage defended and used grossly outdated core component like FUSE2 for a long time, and comes with zero sandboxing by default.
IMO, flatpak needs to improve in terms of security, but it is a strict improvement over AppImage.