Yes! I second that feeling: knowing we are executing something and that thing be... | Hacker News

Hacker Newsnew | past | comments | ask | show | jobs | submit

		gregoriol on April 1, 2020 \| parent \| context \| favorite \| on: Zoom has a signed binary that runs any unsigned sc... Yes! I second that feeling: knowing we are executing something and that thing being open source, it's up to us to check (plus running shell scripts is for power users). Here the user, average joe doesn't know what's happening, and can't check anything as it is hidden.

jtbayly on April 1, 2020 [–]

But so what? All it’s doing is installing the tool he needs.

He knows theoretically that this could be spyware or worse, but hey, everybody else is using it. Seems like no big deal.

Same with that curl script. What are the chances it’s bad? Small. So you run it and hope for the best.

Guidelines | FAQ | Lists | API | Security | Legal | Apply to YC | Contact