this post was submitted on 07 Aug 2023
1121 points (97.1% liked)

Programmer Humor

19623 readers
92 users here now

Welcome to Programmer Humor!

This is a place where you can post jokes, memes, humor, etc. related to programming!

For sharing awful code theres also Programming Horror.

Rules

founded 1 year ago
MODERATORS
 

System32Comics Art

Webtoon gallery

top 50 comments
sorted by: hot top controversial new old
[–] korstmos@kbin.social 156 points 1 year ago (7 children)

Because paying a few grand a year for a certificate somehow makes your software more trustworthy

[–] magic_lobster_party@kbin.social 54 points 1 year ago

The original Twitter checkmark

[–] Zalack@startrek.website 35 points 1 year ago (1 children)

You're being sarcastic but even small fees immediately weed out a ton of cruft.

[–] xigoi@lemmy.sdf.org 27 points 1 year ago (1 children)

They also weed out a lot of legitimate software, especially if it's non-commercial.

[–] Zalack@startrek.website 18 points 1 year ago (1 children)

I'm not saying there aren't downsides, just that it isn't a totally crazy strategy.

[–] RippleEffect@lemmy.world 20 points 1 year ago (1 children)

Well it at least is an obstacle. Broke hackers won't get it or will have to work harder to get around it.

[–] Ddhuud@lemmy.world 41 points 1 year ago

That's the intention. In reality lots of genuine devs can't afford it, so people get accustomed to just ignore the whole thing.

[–] ryannathans@lemmy.fmhy.net 10 points 1 year ago

Even more lols when you are gigabyte and your private key leaks. Also when you are gigabyte and your signed driver is used to privilege escalate malware.

[–] yogurtwrong@lemmy.world 7 points 1 year ago

And you can still bypass it if you put your software in a .zip

[–] smolyeet@lemmy.world 4 points 1 year ago

And that’s why certificates can be revoked, that’s the whole point, trust. It only costs a few hundred a year per Microsoft’s documentation and approved vendors so it doesn’t seem that much of an ask. At the very least you can look up the developer yourself, harder to do if the package has no identity associated with it

[–] Tathas@programming.dev 2 points 1 year ago

Gigabyte has entered the chat.

[–] Zozano@aussie.zone 80 points 1 year ago* (last edited 1 year ago) (2 children)

Linux: OK

User: Oh great, I downloaded a virus

Linux: Lol. You should have read the 2000-line python script on github before running it.

[–] pufferfischerpulver@feddit.de 49 points 1 year ago

Actually there's extensive documentation on the arch wiki regarding this specific line of code burried 1673 lines deep.

I suggest you read the documentation before you ask irrelevant and, might I add, embarrassing questions.

[–] Johanno@lemmy.fmhy.net 16 points 1 year ago

It is your fault always.

[–] ephemerality@lemmy.world 67 points 1 year ago (2 children)

I wrote some open source software and looked into how to make that not happen. It’s not easy on Microsoft, and on Apple it costs more than a $100/year!

[–] Beanie@programming.dev 37 points 1 year ago (5 children)

you have to pay to have your stuff put on the app store??

[–] ephemerality@lemmy.world 41 points 1 year ago

Yes, on both platforms.

[–] Mic_Check_One_Two@reddthat.com 36 points 1 year ago* (last edited 1 year ago)

Not only that; You have to pay for updates too. Supposedly it’s because Apple takes time to verify that the app is legit and not going to do nefarious things. So they don’t want a bad actor to get a legit app on the store, then later push an update that infects everyone with a virus.

But apparently a company did a study and realized that app testing rarely made it past the main page, with testers spending ~15-20 seconds per app. They’d basically open it and if it looked like it did what it said, they didn’t bother digging any deeper.

[–] SpaceNoodle@lemmy.world 14 points 1 year ago

Why do you think they set those up? To not make money?

[–] nomadjoanne@lemmy.world 8 points 1 year ago

Yes. It's actually rather tragic I strive to run my business NOT using big tech. But we need an app for our users. On Apple this means you simply MUST pay apple. 100/year is not a lot. I just don't want to give them my business.

[–] Whirlybird@aussie.zone 1 points 1 year ago

You have to pay for a license to be able to publish apps to the store, yes. This isn't a bad thing, mainly just for the fact that it stops a lot of trash from being put on there.

[–] ryannathans@lemmy.fmhy.net 10 points 1 year ago

Yeah we are an open source org and simply don't sign the executables because of this bullshit

[–] Fuzzy_Dunlop@lemm.ee 38 points 1 year ago (6 children)

I can navigate Windows well enough for my job, but I'd never choose it for personal use. I'm no Linux expert, but I haven't yet been faced with a problem I couldn't solve.

[–] Slopz@lemmy.world 12 points 1 year ago

I'm the exact opposite! Use Windows for personal use, and use Linux for my VMs/Servers/Docker.

[–] svartkaffi@fedia.io 3 points 1 year ago

I was taught to use Ubuntu Linux by a middle aged engineer in another field who demanded "the brown operating system" on his computer over a decade ago, so yes, I agree, day to day Linux hasn't been hard for over a decade.

load more comments (3 replies)
[–] deweydecibel@lemmy.world 30 points 1 year ago* (last edited 1 year ago) (2 children)

This will be outdated soon.

They basically admitted at a security conference (I think) that part of the roadmap for Windows 11 is to actually prevent Windows from running unsigned apps period, and you better believe getting past that will require an Enterprise license.

[–] nomadjoanne@lemmy.world 29 points 1 year ago (3 children)

If true ew. I actually just recently learned that Windows 11 requires a Microsoft account (you can disable it by going into the registry) but it officially actually requires it. Fuck them.

[–] provomeister@lemmy.ca 16 points 1 year ago

No registry edit necessary. Just use the email no[at]thankyou.com, write any password. Windows will throw an error, press continue and voilà, you can create your local account.

Rufus also has an option for local accounts and for removing TPM/SecureBoot requirements.

[–] DigitalBits@programming.dev 2 points 1 year ago (1 children)

I don't think you need to with either a professional or enterpriese account (I think professional). Do need to with a home account though which is extremely annoying.

load more comments (1 replies)
[–] Johanno@lemmy.fmhy.net 2 points 1 year ago

Well you can log in without one, but that requires many unintuitive steps.

For example one of them is to login with wrong Account information.

[–] salient_one@lemmy.villa-straylight.social 23 points 1 year ago (1 children)
[–] Fish@midwest.social 14 points 1 year ago (2 children)

I definitely need a source on this. I searched online and couldn't find anything. If this is true, I feel like it's the one thing that might actually cause some people to move to Linux.

[–] salient_one@lemmy.villa-straylight.social 10 points 1 year ago* (last edited 1 year ago)

There's no reason for Microsoft to do that. That will just alienate existing Windows users enough to try other OSes while providing no benefit whatsoever to the corporation. Even Apple, which is known for its love of walled gardens, allows executing unsigned code in MacOS. So I very much doubt we'll get a source.

[–] average650@lemmy.world 3 points 1 year ago

I feel like it would get much better a mistake if they did... I use both windows and Linux now. I would rather use Linux full time but some software, specifically office and some (not most, but a few) don't play nice with Linux.

If I just lost a ton of programs that I would say are critical for windows, no doubt I switch full time unless my work prevents me.

[–] ErrorCode0@programming.dev 22 points 1 year ago

Mac os when u don't pay 99$ a year to apple to sign the app

[–] Crul@lemmy.world 15 points 1 year ago (1 children)
[–] ekZepp@lemmy.world 2 points 1 year ago
[–] brlemworld@lemmy.world 13 points 1 year ago (1 children)

Mac does it now too. But they do it because they are anti-competitive and want to make you use the Mac app Store. They need to be broken up.

[–] StenSaksTapir@feddit.dk 11 points 1 year ago (1 children)

No.

It's a security feature. Right click, select open, affirm that you meant to run the thing, then it works. This needs to be done once for that app.

You can disable this behavior too.

[–] narp@feddit.de 5 points 1 year ago* (last edited 1 year ago) (2 children)

It has of course nothing to do with the enormous amount of money they rake through their app store by squeezing both the developers and the users.

Why would they try to force people to only use the store by implementing more and more security features along the way!?

It's a mystery!

[–] lorez@lemm.ee 1 points 1 year ago

But they don't force you. I installed Pianoteq 8 downloading it from the official site, not the App Store. All it asks is your touchID or the password.

load more comments (1 replies)
[–] LambLeeg@lemm.ee 10 points 1 year ago (1 children)

Let's make it clear. The only virus on a PC is its owner. It never emerges on itself

[–] ech0@lemmy.world 7 points 1 year ago

Worm Virus enters the chat

[–] h_a_r_u_k_i@programming.dev 3 points 1 year ago

Actually this is a good practice. If you don't know where the program is or if the source is not open, you shouldn't install blindly.

load more comments
view more: next ›