← Back to context

Comment by no_wizard

2 days ago

Its a false belief that distro based package management workflows are, or ever were, more secure. Its the same problem, maybe one step removed. Look at all the exploits with things like libxz

There was also the python 2.7 problem for a long time, thanks to this model, it couldn't be updated quickly and developers, including the OS developers, became dependent on it being there by default, and built things around it.

Then when it EOL'd, it left alot of people exposed to vulnerabilities and was quite the mess to update.

1 comment

no_wizard

Reply
LtWorf  12 hours ago

> Look at all the exploits with things like libxz

You mean 1 in history vs several every week? Looks to me that there actually is a difference.