• korstmos
    link
    fedilink
    1531 year ago

    Because paying a few grand a year for a certificate somehow makes your software more trustworthy

    • @RippleEffect
      link
      211 year ago

      Well it at least is an obstacle. Broke hackers won’t get it or will have to work harder to get around it.

      • @Ddhuud
        link
        401 year ago

        That’s the intention. In reality lots of genuine devs can’t afford it, so people get accustomed to just ignore the whole thing.

    • @[email protected]
      link
      fedilink
      101 year ago

      Even more lols when you are gigabyte and your private key leaks. Also when you are gigabyte and your signed driver is used to privilege escalate malware.

    • @yogurtwrong
      link
      71 year ago

      And you can still bypass it if you put your software in a .zip

    • @smolyeet
      link
      English
      61 year ago

      And that’s why certificates can be revoked, that’s the whole point, trust. It only costs a few hundred a year per Microsoft’s documentation and approved vendors so it doesn’t seem that much of an ask. At the very least you can look up the developer yourself, harder to do if the package has no identity associated with it

  • @[email protected]
    link
    fedilink
    74
    edit-2
    1 year ago

    Linux: OK

    User: Oh great, I downloaded a virus

    Linux: Lol. You should have read the 2000-line python script on github before running it.

    • @[email protected]
      link
      fedilink
      471 year ago

      Actually there’s extensive documentation on the arch wiki regarding this specific line of code burried 1673 lines deep.

      I suggest you read the documentation before you ask irrelevant and, might I add, embarrassing questions.

  • @ephemerality
    link
    English
    661 year ago

    I wrote some open source software and looked into how to make that not happen. It’s not easy on Microsoft, and on Apple it costs more than a $100/year!

      • @[email protected]
        link
        fedilink
        English
        36
        edit-2
        1 year ago

        Not only that; You have to pay for updates too. Supposedly it’s because Apple takes time to verify that the app is legit and not going to do nefarious things. So they don’t want a bad actor to get a legit app on the store, then later push an update that infects everyone with a virus.

        But apparently a company did a study and realized that app testing rarely made it past the main page, with testers spending ~15-20 seconds per app. They’d basically open it and if it looked like it did what it said, they didn’t bother digging any deeper.

      • @SpaceNoodle
        link
        151 year ago

        Why do you think they set those up? To not make money?

      • @nomadjoanne
        link
        81 year ago

        Yes. It’s actually rather tragic I strive to run my business NOT using big tech. But we need an app for our users. On Apple this means you simply MUST pay apple. 100/year is not a lot. I just don’t want to give them my business.

  • @[email protected]
    link
    fedilink
    371 year ago

    I can navigate Windows well enough for my job, but I’d never choose it for personal use. I’m no Linux expert, but I haven’t yet been faced with a problem I couldn’t solve.

      • @[email protected]
        link
        fedilink
        19
        edit-2
        1 year ago

        I think your problem is you are using a niche Arch derivative that has a small user base. You should definitely consider using more mainstream distros so you can easily find the help you need until you are comfortable and feel confident with using Linux.

      • @nomadjoanne
        link
        101 year ago

        I’d use a mainstream distro. I came to Linux in 2017, used Ubuntu for 4 years until I got tired of them forcing snaps down my throat, and then went to Arch. I have never distro-hopped, but I also have never had any huge issues with the mainstream distros.

        The main distros really are well maintained and do tend to “just work”. Dare I say, especially Ubuntu.

    • ⁧⁧⁧
      link
      English
      131 year ago

      I’m the exact opposite! Use Windows for personal use, and use Linux for my VMs/Servers/Docker.

    • svartkaffi
      link
      fedilink
      11 year ago

      I was taught to use Ubuntu Linux by a middle aged engineer in another field who demanded “the brown operating system” on his computer over a decade ago, so yes, I agree, day to day Linux hasn’t been hard for over a decade.

  • deweydecibel
    link
    English
    29
    edit-2
    1 year ago

    This will be outdated soon.

    They basically admitted at a security conference (I think) that part of the roadmap for Windows 11 is to actually prevent Windows from running unsigned apps period, and you better believe getting past that will require an Enterprise license.

    • @nomadjoanne
      link
      281 year ago

      If true ew. I actually just recently learned that Windows 11 requires a Microsoft account (you can disable it by going into the registry) but it officially actually requires it. Fuck them.

      • @[email protected]
        link
        fedilink
        151 year ago

        No registry edit necessary. Just use the email no[at]thankyou.com, write any password. Windows will throw an error, press continue and voilà, you can create your local account.

        Rufus also has an option for local accounts and for removing TPM/SecureBoot requirements.

      • @[email protected]
        link
        fedilink
        English
        51 year ago

        I created my windows 11 install stick with Rufus, it actually has an option to disable the requirement for a windows account when creating the bootable stick

      • @[email protected]
        link
        fedilink
        31 year ago

        I don’t think you need to with either a professional or enterpriese account (I think professional). Do need to with a home account though which is extremely annoying.

      • Johanno
        link
        fedilink
        11 year ago

        Well you can log in without one, but that requires many unintuitive steps.

        For example one of them is to login with wrong Account information.

      • Fish [Indiana]
        link
        fedilink
        English
        131 year ago

        I definitely need a source on this. I searched online and couldn’t find anything. If this is true, I feel like it’s the one thing that might actually cause some people to move to Linux.

        • @[email protected]
          link
          fedilink
          English
          10
          edit-2
          1 year ago

          There’s no reason for Microsoft to do that. That will just alienate existing Windows users enough to try other OSes while providing no benefit whatsoever to the corporation. Even Apple, which is known for its love of walled gardens, allows executing unsigned code in MacOS. So I very much doubt we’ll get a source.

        • @average650
          link
          English
          31 year ago

          I feel like it would get much better a mistake if they did… I use both windows and Linux now. I would rather use Linux full time but some software, specifically office and some (not most, but a few) don’t play nice with Linux.

          If I just lost a ton of programs that I would say are critical for windows, no doubt I switch full time unless my work prevents me.

  • ErrorCode0
    link
    fedilink
    English
    211 year ago

    Mac os when u don’t pay 99$ a year to apple to sign the app

    • ekZeppOP
      link
      English
      21 year ago

      👌

  • @brlemworld
    link
    141 year ago

    Mac does it now too. But they do it because they are anti-competitive and want to make you use the Mac app Store. They need to be broken up.

      • @[email protected]
        link
        fedilink
        English
        5
        edit-2
        1 year ago

        It has of course nothing to do with the enormous amount of money they rake through their app store by squeezing both the developers and the users.

        Why would they try to force people to only use the store by implementing more and more security features along the way!?

        It’s a mystery!

        • lorez
          link
          fedilink
          11 year ago

          But they don’t force you. I installed Pianoteq 8 downloading it from the official site, not the App Store. All it asks is your touchID or the password.

        • @[email protected]
          link
          fedilink
          01 year ago

          Because users, largely, are stupid.

          Security usually comes at the price of inconvenience.

          You’re not forced to use the app store by any means and if you find it difficult not to, then you’re probably the type of user they want to protect.

  • CandyDumDub
    link
    fedilink
    English
    91 year ago

    Let’s make it clear. The only virus on a PC is its owner. It never emerges on itself

    • @ech0
      link
      71 year ago

      Worm Virus enters the chat

  • haruki
    link
    fedilink
    31 year ago

    Actually this is a good practice. If you don’t know where the program is or if the source is not open, you shouldn’t install blindly.