Categories

JavaScriptPHPHTMLCssPythonWordPressWeb developmentLinuxMySQLAndroidWindowsJavaC++ / C#LayoutReactUbuntuYiiDjangoProgramming1C-BitrixLaravelSystem administrationTelegramJSONDebianPostgreSQLIOSGoogleHtaccessWindows ServerGitMacOSGoogle ChromeCMSWooСommerceBootstrapNginxSQLUnityAPI
Make a leaderReport
V
V
Vyacheslav Kondrashov2021-03-07 21:34:08
open source
Vyacheslav Kondrashov, 2021-03-07 21:34:08

Why does everyone believe the originals?

Consider Telegram. Everyone downloads .exe from Telegram's official website, while we can build our own Telegram from sources on GitHub, which we all trust. As a result, a small part of those who built the application from source has 100% clean code, but why are all those who downloaded the .exe sure that their application was built from the same code as on GitHub? It turns out that due to the source code in some repository, the project earns a lot of reputation, and the project downloaded from the site with other code reaps the fruits of this very reputation? Maybe I don’t understand something and there are some guarantees that the downloaded project is exactly the same as in the repository?

Reply
Answer the question

Answer the question

In order to leave comments, you need to log in

4 answer(s)
Report
C
CityCat4, 2021-03-07
@donatelloturtle

and are there any guarantees that the downloaded project is exactly the same as in the repository?

No. Laying out source codes and assembly documentation, which describes how to assemble the project - this is this very guarantee. Anyone who really bothers with security - he will not just compile from the source, he will first revise the code, and only then compile it. True, such among cart users, for example, are hardly more than a hundredth of a percent.
Usually laying out raws means that you can, if you want, check the source for the absence of bookmarks and build a project from them.

Report
D
Dr. Bacon, 2021-03-07
@bacon

Why did you decide that "sure"? Most download because they don't know how to build from source. And those who know do not want, for example, to bother with this, etc. Well, those who do not trust that they cannot even eat, they take and collect.

Report
I
iBird Rose, 2021-03-07
@iiiBird

Well, you gave a bad example. Since the cart is very popular. There is already a reputation system in place. It just doesn't make sense for them to slip something into the build. Since it will be a significant blow to the reputation.
Well, when it comes to small projects - yes. It's better to check everything yourself.

Report
L
Leonid, 2021-03-07
@caballero

if you download from the official site and not from anywhere, then of course they correspond. But the vast majority of telegram users have no idea about the existence of the github and what the source code of the telegram is there. so don't sweat it

Similar questions
N
NETChaser2015-04-11 13:25:05
Where to look for a JavaScript programmer for an open source project? 5Reply
A
adrewind2017-04-22 01:49:30
How do you promote your Open Source developments? 6Reply
D
da da2021-04-07 17:41:04
What good open source games can you recommend? 5Reply
U
uraltus2017-05-30 10:42:30
What is the name of the business model of open source software companies? 1Reply
P
purrrminator2015-07-08 23:00:11
Telegram API in a commercial project. Should the developer open source? 1Reply

Didn't find what you were looking for?

Ask your question

Ask a Question

731 491 924 answers to any question