zlacker

[parent] [thread] 3 comments
1. m-schu+(OP)[view] [source] 2026-02-02 05:26:33
Why woul building from source be safer? Are you veting every single line of third-party source code you compile and use?
replies(1): >>g-b-r+G4
2. g-b-r+G4[view] [source] 2026-02-02 06:22:41
>>m-schu+(OP)
You're sure not vetting any byte of an executable, so building from source is safer.
replies(1): >>m-schu+kh
◧◩
3. m-schu+kh[view] [source] [discussion] 2026-02-02 08:47:28
>>g-b-r+G4
Binaries or source, it's pretty much the same unless you thoroughly vet the entire source code. Malicious code isn't advertised and commented and found by looking at a couple of functions. It's carefully hidden and obfuscated.
replies(1): >>g-b-r+Vk
◧◩◪
4. g-b-r+Vk[view] [source] [discussion] 2026-02-02 09:28:53
>>m-schu+kh
That's

However much the code is hidden and obfuscated, some parts of the source code are going to be looked upon.

For a binary, none, ever, except in the extremely rare case that someone disassembles and analyzes one version of it.

The fact that open-source doesn't coincide with security doesn't mean that it isn't beneficial to security.

[go to top]