Bluetooth streaming from phone randomly stops
Bluetooth streaming from phone randomly stops
GitHub - spacebarchat/spacebarchat: 📬 Spacebar is a free open source selfhostable discord compatible communication platform
What's the minimum number of food items you can survive on exclusively and what are they?
What's the laziest way to create a website that looks really nice and is maintainable?
Profiles (old) vs Profiles (new) vs Containers
Terraform plugin for the Dominos Pizza provider
Core War - Wikipedia
home-manager now has a built in option to wrap packages with NixGL, for non-nixos systems
Is there any way on KDE, I can "click through" a partially transparent window to interact with the window behind it instead?
Is there any way on KDE, I can "click through" a partially transparent window to interact with the window behind it instead?
Is there any way on KDE, I can "click through" a partially transparent window to interact with the window behind it instead?
GitHub - element-hq/ess-helm: Element Server Suite Community Edition
GitHub - element-hq/ess-helm: Element Server Suite Community Edition
Give me some of your hardest riddles? (with solutions in spoilers)
There doesn't appear to be a limit to the maximum size the KDE cursor can get when you shake it.
There doesn't appear to be a limit to the maximum size the KDE cursor can get when you shake it.
shell-mommy is a program that encourages users while using command line applications.
shell-mommy is a program that encourages users while using command line applications.
Introducing Incus 6.7
I won't lie, I use curl | bash as well, but I do dislike it for two reasons:
Firstly, it is much, much easier to compromise the website hosting than the binary itself, usually. Distributed binaries are usually signed by multiple keys from multiple servers, resulting in them being highly resistant to tampering. Reproducible builds (two users compiling a program get the same output) make it trivial to detect tampering as well.
On the other hand, websites hosting infrastructure is generally nowhere near as secure. It's typically one or two VPS's, and there is no signature or verification that the content is "official". So even if I'm not tampering with the binary, I can still tamper with the bash script to add extra goodies to it.
On the other hand (but not really relevant to what OP is talking about), just because I trust someone to give me a binary in a mature programming language they have experience writing in, doesn't mean I trust them to give me a script in a language known for footguns. A steam bug in their bash script once deleted a user's home directory. There have also been issues with AUR packages, which are basically bash scripts, breaking people's systems as well. When it comes to user/community created scripts, I mostly trust them to not be malicious, and I am more fearful of a bug or mistake screwing things up. But at the same time, I have little confidence in my ability to spot these bugs.
Generally, I only make an exception for running bash installers if the program being installed is a "platform" that I can use to install more software. K3s (Kubernetes distro), or the Nix package manager are examples. If I can install something via Nix or Docker then it's going to be installed via there and not installed via curl | bash. Not every developer under the sun should be given the privilege of running a bash script on my system.
As a sidenote, docker doesn't recommend their install script anymore. All the instructions have been removed from the website, and they recommend adding their own repo's instead. Personally, I prefer to get it from the distro's repositories, as usually that's the simplest and fastest way to install docker nowadays.