alt Hacker News> Then we expect uses to know better than e.g. to trust links to .sh style installers some FOSS suggests...
I don't know anyone that inspects every binary yet we apparently we should not trust shell scripts?
> Then we expect uses to know better than e.g. to trust links to .sh style installers some FOSS suggests...
I don't know anyone that inspects every binary yet we apparently we should not trust shell scripts?
I know many who only use binaries from trusted sources, that do monitoring, provide certificates and checksums, and so on - and run them in an OS sandbox too when they install them.
So there's that