cm0002@lemdro.id to Linux@programming.devEnglish · 4 days agoSignal AppImage now officially available for Linuxaboutsignal.comexternal-linkmessage-square23linkfedilinkarrow-up11arrow-down10
arrow-up11arrow-down1external-linkSignal AppImage now officially available for Linuxaboutsignal.comcm0002@lemdro.id to Linux@programming.devEnglish · 4 days agomessage-square23linkfedilink
minus-squareKSP Atlas@sopuli.xyzlinkfedilinkarrow-up0·3 days agoIMO flatpaks are a better option, appimages are just bringing people back to the insecure “find it on a website and download it” method of package management This is also one of the reasons why I dislike curl sh
minus-squarelukalix98@programming.devlinkfedilinkarrow-up0·3 days agoFlatpaks can be unsafe too though.
minus-squareMarija_@programming.devlinkfedilinkarrow-up0·3 days agoI still prefer repositories, but official AppImages beat unofficial downloads.
minus-squarespectrums_coherence@piefed.sociallinkfedilinkEnglisharrow-up0·edit-23 days agoAppImage defended and used grossly outdated core component like FUSE2 for a long time, and comes with zero sandboxing by default. IMO, flatpak needs to improve in terms of security, but it is a strict improvement over AppImage.
minus-squareAudaciousArmadillo@piefed.blahaj.zonelinkfedilinkEnglisharrow-up0·3 days agoSame goes for .debs from Debian stable. There is no absolute safety. But downloading unsigned code from a random website is far down the safe list.
IMO flatpaks are a better option, appimages are just bringing people back to the insecure “find it on a website and download it” method of package management
This is also one of the reasons why I dislike curl sh
Flatpaks can be unsafe too though.
I still prefer repositories, but official AppImages beat unofficial downloads.
AppImage defended and used grossly outdated core component like FUSE2 for a long time, and comes with zero sandboxing by default.
IMO, flatpak needs to improve in terms of security, but it is a strict improvement over AppImage.
Same goes for .debs from Debian stable. There is no absolute safety. But downloading unsigned code from a random website is far down the safe list.