I despise how security updates are bundled with feature updates.
Uncategorized
29
Posts
19
Posters
0
Views
-
I despise how security updates are
bundled with feature updates.Now we have to choose between risking getting malware from random criminal gangs when refusing to update, or getting embedded malware from the tech company itself that comes with their update.
And honestly at this point, I'm not sure which is worse.
@Em0nM4stodon Such is the misery of proprietary malware. -
I despise how security updates are
bundled with feature updates.Now we have to choose between risking getting malware from random criminal gangs when refusing to update, or getting embedded malware from the tech company itself that comes with their update.
And honestly at this point, I'm not sure which is worse.
@Em0nM4stodon
Exactly this. Preparatory to shipping iOS 26, my iPad no longer accepts updates, so it's no longer safe to use online.I was forced to the new MacOS on my work machine, which is a (small, but still) factor in scheduling a job interview this week.
-
@Em0nM4stodon
I remember when you had to protect your OS from malware instead of your OS actually being the malware you have to protect yourself from.I remember when the people you had to keep out of your computer were criminals, rather than the police.
-
I despise how security updates are
bundled with feature updates.Now we have to choose between risking getting malware from random criminal gangs when refusing to update, or getting embedded malware from the tech company itself that comes with their update.
And honestly at this point, I'm not sure which is worse.
@Em0nM4stodon security and feature updates should be separate as far as is practical
except where a feature strictly depends on another feature every feature should be selectable separately
-
I despise how security updates are
bundled with feature updates.Now we have to choose between risking getting malware from random criminal gangs when refusing to update, or getting embedded malware from the tech company itself that comes with their update.
And honestly at this point, I'm not sure which is worse.
@Em0nM4stodon sometimes, the best option is to change software packages. Harder to do with the OS.
-
@Em0nM4stodon security and feature updates should be separate as far as is practical
except where a feature strictly depends on another feature every feature should be selectable separately
-
I despise how security updates are
bundled with feature updates.Now we have to choose between risking getting malware from random criminal gangs when refusing to update, or getting embedded malware from the tech company itself that comes with their update.
And honestly at this point, I'm not sure which is worse.
@Em0nM4stodon At least equally bad
-
I despise how security updates are
bundled with feature updates.Now we have to choose between risking getting malware from random criminal gangs when refusing to update, or getting embedded malware from the tech company itself that comes with their update.
And honestly at this point, I'm not sure which is worse.
@Em0nM4stodon what do you think is a reasonable and sustainable software update model? How many versions behind do you back port fixes to? For how many months/years?
-
I despise how security updates are
bundled with feature updates.Now we have to choose between risking getting malware from random criminal gangs when refusing to update, or getting embedded malware from the tech company itself that comes with their update.
And honestly at this point, I'm not sure which is worse.
@Em0nM4stodon where are the Linux phones? There are barely any on the market. It's ridiculous. They should have been ready years ago.
Not to be paranoid but I'm pretty certain there is a conspiracy going on, that will be a public knowledge like the light bulb cartel is today.
-
@Em0nM4stodon what do you think is a reasonable and sustainable software update model? How many versions behind do you back port fixes to? For how many months/years?
@Aurimas It really depends on each piece of software and the type of data it handles.
-
@Em0nM4stodon where are the Linux phones? There are barely any on the market. It's ridiculous. They should have been ready years ago.
Not to be paranoid but I'm pretty certain there is a conspiracy going on, that will be a public knowledge like the light bulb cartel is today.
@licho I wish there was way more Linux phone models available from everywhere in the world. It's insane that we have so few accessible choices in mobile software.
-
@Em0nM4stodon what do you think is a reasonable and sustainable software update model? How many versions behind do you back port fixes to? For how many months/years?
@Aurimas @Em0nM4stodon What’s most irritating about this to me is companies which ship security-only updates, but only to weird versions of the product. For example, Microsoft has LTSC versions of Windows (e.g, Windows 11 IoT Enterprise LTSC) which get security updates at the same time as the mainstream versions for *ten years*, and they don’t get any feature updates! They’re already doing the work of porting fixes around, they just don’t let the mainstream versions take advantage of it.
-
@Aurimas It really depends on each piece of software and the type of data it handles.
@Em0nM4stodon I think it is really difficult to maintain and sustain more than just the latest version of a piece of software, which then in turn leads to fixes shipping together with features. Having had to back port security fixes to an old version of Android I really feel for picking the lowest cost way out.
-
@Em0nM4stodon where are the Linux phones? There are barely any on the market. It's ridiculous. They should have been ready years ago.
Not to be paranoid but I'm pretty certain there is a conspiracy going on, that will be a public knowledge like the light bulb cartel is today.
@licho @Em0nM4stodon Eh?? Why would you want a Linux phone when you could grab a Pixel with bleeding edge security updates to firmware that is open to active development for alternative OSs like GrapheneOS?
And btw it's no conspiracy there are Linux phones on the market. They are nowhere near comparable to security you get with GOS.
-
@licho @Em0nM4stodon Eh?? Why would you want a Linux phone when you could grab a Pixel with bleeding edge security updates to firmware that is open to active development for alternative OSs like GrapheneOS?
And btw it's no conspiracy there are Linux phones on the market. They are nowhere near comparable to security you get with GOS.
@x41h @Em0nM4stodon grapheneOS is still android. Pixel is made by Google.
There's a difference between "barely any" and "no". I said barely any. There are Linux phones but there are very few of them and they all suck. Most are "currently out of stock".
If there was a conspiracy it's unlikely you or I would know it for sure.
-
@x41h @Em0nM4stodon grapheneOS is still android. Pixel is made by Google.
There's a difference between "barely any" and "no". I said barely any. There are Linux phones but there are very few of them and they all suck. Most are "currently out of stock".
If there was a conspiracy it's unlikely you or I would know it for sure.
@licho @Em0nM4stodon the only conspiracy is that Google tried to block sideloading APKs. I wonder why... GOS team are to release news of an OEM deal at some point.
-
@Em0nM4stodon I think it is really difficult to maintain and sustain more than just the latest version of a piece of software, which then in turn leads to fixes shipping together with features. Having had to back port security fixes to an old version of Android I really feel for picking the lowest cost way out.
@Em0nM4stodon @Aurimas Really irritating thing about the current Apple situation is that they are still providing security updates for older versions of the operating systems, but only on devices which cannot install 26. -
@Em0nM4stodon @Aurimas Really irritating thing about the current Apple situation is that they are still providing security updates for older versions of the operating systems, but only on devices which cannot install 26.
@pacavegano @Em0nM4stodon what do you think they should do instead?
-
I despise how security updates are
bundled with feature updates.Now we have to choose between risking getting malware from random criminal gangs when refusing to update, or getting embedded malware from the tech company itself that comes with their update.
And honestly at this point, I'm not sure which is worse.
@Em0nM4stodon ok, but look on technical side, most of updates is in binary format, and assumes one state, and leads to other. Now if you would like to have 2 updates, one for security, one for features.... it is difficult (I would like to say impossible) in diff approach.
You don't have 1 "start" version but multiple... maybe user has prev security, but not features....
Even for single app it seems that you would need to produce multiple versions of the same update.... lets say, you would always keep only 10 back... so 10 back, user can go with full, or only security... so there are 2 10 back, 9 back... user may start from each of those and choose going with features, or with security.... what will be even more wired...
Even if it would be distributed on source level... nope... it would be backporting security changes, or sometimes writing several versions of those....Or you have some idea how to do it? Maybe there is some doable way I simply don't see, hope you will share 🙂
-
@pacavegano @Em0nM4stodon what do you think they should do instead?
@Em0nM4stodon @Aurimas I think that they should allow users of any device to choose to continue to run the older operating system, with security updates, for as long as they continue to provide those updates on any device.
Gli ultimi otto messaggi ricevuti dalla Federazione
-
#GiornodellaMemoria
Abbiamo giurato. A milioni di persone. 6 milioni di #ebrei, 500mila #rom, 250mila #disabili, #omosessuali, #testimonidigeova, #politici, (...)
A tutto il mondo, a tutte le minoranze, a tutti gli oppressi, abbiamo giurato.
Oggi per @repubblica
-
Ma la pubblicità redazionale non andava distinta graficamente dagli articoli? Chiedo per un docente di deontologia giornalistica.
Allianz, assicuratore ufficiale dei Giochi di Milano Cortina 2026, promuove unione, sicurezza ed eccellenza
https://www.ilsole24ore.com/art/allianz-assicuratore-ufficiale-giochi-milano-cortina-2026-promuove-unione-sicurezza-ed-eccellenza-AI2PVM5
-
@kenobit
:)
-
@vixi_ La copertina così glitchata mi piace ancora di più!
-
-
Tutti pazzi per Clawdbot. Cos'è e perché ci ha fatto paura, in tutti i sensi | DDay.it
> Da qualche mese un progetto opensource è diventato virale: siamo davanti all’agente IA più potente e versatile mai sviluppato, un vero compagno di vita. Che ci pone davanti ad interrogativi etici e ad un po’ di preoccupazione. Lo abbiamo provato, ma ci siamo fermati perché ci ha fatto paura.
-
@zavaj
Benvenuto! Quando trovi qualcuno di interessante oltre a seguirlo attiva la notifica, cosi vedi i toot nella timeline specifica. All'inizio devi portar pazienza e poi pian piano conosci le persone
@kenobit
-
NEW VIDEO - I Turned FreeBSD Into My Own Zoom Server! (Galene Setup Tutorial) 🚀📹
https://youtu.be/0BjwNCalzBs?si=M5msLe5ocdPu-Ydn via @YouTube
#freebsd #unix #opensource #galene
