tulpa on Nostr: If you get your binaries from someone you don't have reason to trust, it's not worth ...
If you get your binaries from someone you don't have reason to trust, it's not worth much for the software to be FOSS. You have no reason to feel sure that the binaries match the source you read.
That's my response to the people mad at Bitwarden today. You've already trusted them with your secrets, probably without verification.
Published at
2024-10-20 23:19:47Event JSON
{
"id": "2e021bd758498975525ddd19d2f3414df454fd803cc8575cb9ca98b60a69063f",
"pubkey": "3b4da290eaf741efa69ea0111602d47802d97f3c37e352b132b9a1ef29e383b0",
"created_at": 1729466387,
"kind": 1,
"tags": [
[
"proxy",
"https://fosstodon.org/users/tulpa/statuses/113342309152028117",
"activitypub"
]
],
"content": "If you get your binaries from someone you don't have reason to trust, it's not worth much for the software to be FOSS. You have no reason to feel sure that the binaries match the source you read.\n\nThat's my response to the people mad at Bitwarden today. You've already trusted them with your secrets, probably without verification.",
"sig": "fd64e1e369cec619f0c9c48ad0fdadeaa5b5257a3f7a76c3f88ec4abfac905e4ac82847104a2e4445274011b5065203492715ba9bd2077adc60407e6f5c579ed"
}
