The likelihood of malware in open-source daily updates and what to do?

U

uyrij2022-03-16 17:00:45

Windows

uyrij, 2022-03-16 17:00:45

If it used to be wise to exercise some caution when adding obscure PPAs
, can it be the same with mainstream big products now? What to do? What is the strategy? Are there security resources for automatic checks?

Reply

Answer the question

In order to leave comments, you need to log in

4 answer(s)

S

Sergey Gornostaev, 2022-03-16
@sergey-gornostaev

Automatic checks are useful only to highlight suspicious places, you can not rely on them to catch all the bookmarks. Therefore, you will have to update less often, review the new code, manually collect dependencies and store them. Or design systems so that they do not trust themselves and easily roll back to previous versions.

V

Vladimir Korotenko, 2022-03-16
@firedragon

yes, my God, my Indians do not deal with this garbage, they destroy the system just like that.
Create policy for updates, test subjects, users, critical services

D

Drno, 2022-03-16
@Drno

nothing changed. everything works as it was before

V

ValdikSS, 2022-03-16
@ValdikSS

The strategy is the same at all times - install only proven software from vendors you trust. You are talking about PPA, but in the Windows tags it is not clear which OS you are using, but Debian and Ubuntu LTS follow the stability paradigm - just like that, the new version will not appear in the repositories, updates cover mainly errors and vulnerabilities, with the help of patches to the current version of the software .