As in, this person is being an asshole. That's what's terrible.
-
-
@wycats@steveklabnik Depends on the package and source. Cryptographically signed from a trusted source is better, no? -
@adamauden@wycats@steveklabnik you see the URL where .sh is from -
@vivainio@wycats@steveklabnik That’s true, but if the server were compromised and that scrip modified it would still look legit. -
@adamauden@vivainio@steveklabnik and if the server was compromised a .pkg would look legit
End of conversation
New conversation -
Loading seems to be taking a while.
Twitter may be over capacity or experiencing a momentary hiccup. Try again or visit Twitter Status for more information.