• korstmos@kbin.social
    link
    fedilink
    arrow-up
    160
    arrow-down
    2
    ·
    1 year ago

    Because paying a few grand a year for a certificate somehow makes your software more trustworthy

    • RippleEffect@lemmy.world
      link
      fedilink
      arrow-up
      22
      arrow-down
      2
      ·
      1 year ago

      Well it at least is an obstacle. Broke hackers won’t get it or will have to work harder to get around it.

      • Ddhuud@lemmy.world
        link
        fedilink
        arrow-up
        41
        ·
        1 year ago

        That’s the intention. In reality lots of genuine devs can’t afford it, so people get accustomed to just ignore the whole thing.

    • ryannathans@lemmy.fmhy.net
      link
      fedilink
      arrow-up
      10
      ·
      1 year ago

      Even more lols when you are gigabyte and your private key leaks. Also when you are gigabyte and your signed driver is used to privilege escalate malware.

    • smolyeet@lemmy.world
      link
      fedilink
      English
      arrow-up
      7
      arrow-down
      3
      ·
      1 year ago

      And that’s why certificates can be revoked, that’s the whole point, trust. It only costs a few hundred a year per Microsoft’s documentation and approved vendors so it doesn’t seem that much of an ask. At the very least you can look up the developer yourself, harder to do if the package has no identity associated with it

  • Zozano@aussie.zone
    link
    fedilink
    arrow-up
    85
    arrow-down
    4
    ·
    edit-2
    1 year ago

    Linux: OK

    User: Oh great, I downloaded a virus

    Linux: Lol. You should have read the 2000-line python script on github before running it.

    • pufferfischerpulver@feddit.de
      link
      fedilink
      arrow-up
      53
      arrow-down
      3
      ·
      1 year ago

      Actually there’s extensive documentation on the arch wiki regarding this specific line of code burried 1673 lines deep.

      I suggest you read the documentation before you ask irrelevant and, might I add, embarrassing questions.

  • ephemerality@lemmy.world
    link
    fedilink
    English
    arrow-up
    67
    ·
    1 year ago

    I wrote some open source software and looked into how to make that not happen. It’s not easy on Microsoft, and on Apple it costs more than a $100/year!

      • Mic_Check_One_Two@reddthat.com
        link
        fedilink
        English
        arrow-up
        36
        ·
        edit-2
        1 year ago

        Not only that; You have to pay for updates too. Supposedly it’s because Apple takes time to verify that the app is legit and not going to do nefarious things. So they don’t want a bad actor to get a legit app on the store, then later push an update that infects everyone with a virus.

        But apparently a company did a study and realized that app testing rarely made it past the main page, with testers spending ~15-20 seconds per app. They’d basically open it and if it looked like it did what it said, they didn’t bother digging any deeper.

      • nomadjoanne@lemmy.world
        link
        fedilink
        arrow-up
        9
        arrow-down
        1
        ·
        1 year ago

        Yes. It’s actually rather tragic I strive to run my business NOT using big tech. But we need an app for our users. On Apple this means you simply MUST pay apple. 100/year is not a lot. I just don’t want to give them my business.

      • Whirlybird@aussie.zone
        link
        fedilink
        arrow-up
        3
        arrow-down
        2
        ·
        1 year ago

        You have to pay for a license to be able to publish apps to the store, yes. This isn’t a bad thing, mainly just for the fact that it stops a lot of trash from being put on there.

  • Fuzzy_Dunlop@lemm.ee
    link
    fedilink
    arrow-up
    41
    arrow-down
    3
    ·
    1 year ago

    I can navigate Windows well enough for my job, but I’d never choose it for personal use. I’m no Linux expert, but I haven’t yet been faced with a problem I couldn’t solve.

      • mfn@mfn.pub
        link
        fedilink
        arrow-up
        20
        ·
        edit-2
        1 year ago

        I think your problem is you are using a niche Arch derivative that has a small user base. You should definitely consider using more mainstream distros so you can easily find the help you need until you are comfortable and feel confident with using Linux.

      • nomadjoanne@lemmy.world
        link
        fedilink
        arrow-up
        11
        ·
        1 year ago

        I’d use a mainstream distro. I came to Linux in 2017, used Ubuntu for 4 years until I got tired of them forcing snaps down my throat, and then went to Arch. I have never distro-hopped, but I also have never had any huge issues with the mainstream distros.

        The main distros really are well maintained and do tend to “just work”. Dare I say, especially Ubuntu.

    • ⁧⁧⁧@lemmy.world
      link
      fedilink
      English
      arrow-up
      13
      arrow-down
      1
      ·
      1 year ago

      I’m the exact opposite! Use Windows for personal use, and use Linux for my VMs/Servers/Docker.

    • svartkaffi@fedia.io
      link
      fedilink
      arrow-up
      3
      ·
      1 year ago

      I was taught to use Ubuntu Linux by a middle aged engineer in another field who demanded “the brown operating system” on his computer over a decade ago, so yes, I agree, day to day Linux hasn’t been hard for over a decade.

    • Whirlybird@aussie.zone
      link
      fedilink
      arrow-up
      3
      arrow-down
      9
      ·
      1 year ago

      I can navigate Windows well enough for my job, but I’d never choose it for personal use.

      😂 What exactly is hard to “navigate” about windows for personal use? (or professional use for that matter)

      • Fuzzy_Dunlop@lemm.ee
        link
        fedilink
        arrow-up
        7
        ·
        edit-2
        1 year ago

        Didn’t say it was hard. To be clear…by saying “well enough,” I mean that I don’t have any major problems with it…I’m just no expert. I find that there are two many pointless “utilities” that only slow the machine down. Both of my last two (brand new) computers have had both Windows and Ubuntu installed before adding anything else. There’s actually still nothing on the Windows partitions, but whenever I switch to it, it’s like switching from a car to a bicycle. It’s ridiculous how Windows can be so, so slow “right out of the box,” while Ubuntu just works.

        • Whirlybird@aussie.zone
          link
          fedilink
          arrow-up
          1
          arrow-down
          11
          ·
          1 year ago

          Windows is blazingly fast on any decently spec’d machine these days. Boot times of like 5 seconds. Everything loaded up after you login basically instantly.

  • deweydecibel@lemmy.world
    link
    fedilink
    English
    arrow-up
    38
    arrow-down
    8
    ·
    edit-2
    1 year ago

    This will be outdated soon.

    They basically admitted at a security conference (I think) that part of the roadmap for Windows 11 is to actually prevent Windows from running unsigned apps period, and you better believe getting past that will require an Enterprise license.

    • nomadjoanne@lemmy.world
      link
      fedilink
      arrow-up
      29
      ·
      1 year ago

      If true ew. I actually just recently learned that Windows 11 requires a Microsoft account (you can disable it by going into the registry) but it officially actually requires it. Fuck them.

      • provomeister@lemmy.ca
        link
        fedilink
        arrow-up
        16
        ·
        1 year ago

        No registry edit necessary. Just use the email no[at]thankyou.com, write any password. Windows will throw an error, press continue and voilà, you can create your local account.

        Rufus also has an option for local accounts and for removing TPM/SecureBoot requirements.

      • DigitalBits@programming.dev
        link
        fedilink
        arrow-up
        2
        ·
        1 year ago

        I don’t think you need to with either a professional or enterpriese account (I think professional). Do need to with a home account though which is extremely annoying.

      • Johanno@lemmy.fmhy.net
        link
        fedilink
        arrow-up
        2
        ·
        1 year ago

        Well you can log in without one, but that requires many unintuitive steps.

        For example one of them is to login with wrong Account information.

      • Fish [Indiana]@midwest.social
        link
        fedilink
        English
        arrow-up
        14
        ·
        1 year ago

        I definitely need a source on this. I searched online and couldn’t find anything. If this is true, I feel like it’s the one thing that might actually cause some people to move to Linux.

        • salient_one@lemmy.villa-straylight.social
          link
          fedilink
          English
          arrow-up
          10
          ·
          edit-2
          1 year ago

          There’s no reason for Microsoft to do that. That will just alienate existing Windows users enough to try other OSes while providing no benefit whatsoever to the corporation. Even Apple, which is known for its love of walled gardens, allows executing unsigned code in MacOS. So I very much doubt we’ll get a source.

        • average650@lemmy.world
          link
          fedilink
          English
          arrow-up
          3
          ·
          1 year ago

          I feel like it would get much better a mistake if they did… I use both windows and Linux now. I would rather use Linux full time but some software, specifically office and some (not most, but a few) don’t play nice with Linux.

          If I just lost a ton of programs that I would say are critical for windows, no doubt I switch full time unless my work prevents me.

  • brlemworld@lemmy.world
    link
    fedilink
    arrow-up
    20
    arrow-down
    7
    ·
    1 year ago

    Mac does it now too. But they do it because they are anti-competitive and want to make you use the Mac app Store. They need to be broken up.

      • narp@feddit.de
        link
        fedilink
        English
        arrow-up
        7
        arrow-down
        2
        ·
        edit-2
        1 year ago

        It has of course nothing to do with the enormous amount of money they rake through their app store by squeezing both the developers and the users.

        Why would they try to force people to only use the store by implementing more and more security features along the way!?

        It’s a mystery!

        • lorez@lemm.ee
          link
          fedilink
          arrow-up
          2
          arrow-down
          1
          ·
          1 year ago

          But they don’t force you. I installed Pianoteq 8 downloading it from the official site, not the App Store. All it asks is your touchID or the password.

        • StenSaksTapir@feddit.dk
          link
          fedilink
          arrow-up
          1
          arrow-down
          2
          ·
          1 year ago

          Because users, largely, are stupid.

          Security usually comes at the price of inconvenience.

          You’re not forced to use the app store by any means and if you find it difficult not to, then you’re probably the type of user they want to protect.

  • CandyDumDub@lemm.ee
    link
    fedilink
    English
    arrow-up
    11
    arrow-down
    1
    ·
    1 year ago

    Let’s make it clear. The only virus on a PC is its owner. It never emerges on itself

  • haruki@programming.dev
    link
    fedilink
    arrow-up
    4
    arrow-down
    1
    ·
    1 year ago

    Actually this is a good practice. If you don’t know where the program is or if the source is not open, you shouldn’t install blindly.