Linux

linux@lemmy.ml

(Group)

From Wikipedia, the free encyclopedia

Linux is a family of open source Unix-like operating systems based on the Linux kernel, an operating system kernel first released on September 17, 1991 by Linus Torvalds. Linux is typically packaged in a Linux distribution (or distro for short).

Distributions include the Linux kernel and supporting system software and libraries, many of which are provided by the GNU Project. Many Linux distributions use the word “Linux” in their name, but the Free Software Foundation uses the name GNU/Linux to emphasize the importance of GNU software, causing some controversy.

Rules

Posts must be relevant to operating systems running the Linux kernel. GNU/Linux or otherwise.
No misinformation
No NSFW content
No hate speech, bigotry, etc

Related Communities

Community icon by Alpár-Etele Méder, licensed under CC BY 3.0

lemmy

Welcome to Friendica.Eskimo.Com

Home of Censorship Free Hosting

E-mail, Web Hosting, Linux Shell Accounts terminal or full remote desktops.

Sign Up For A Free Trial Here

Please tell your friends about federated social media site that speaks several fediverse protocols thus serving as a hub uniting them, hubzilla.eskimo.com, also check out friendica.eskimo.com, federated macroblogging social media site, mastodon.eskimo.com a federated microblogging site, and yacy.eskimo.com an uncensored federated search engine. All Free!

dogs0n via Linux

Wednesday, June 24, 2026, 11:27 PM (Received today, 6:45 AM)

dogs0n
Wednesday, June 24, 2026, 11:27 PM (Received today, 6:45 AM)

Bazzite Auto Updates

cross-posted from: sh.itjust.works/post/62361303

Hello good people.
Is no one afraid of Bazzites auto updating nature?
I am myself worried about the potential for well timed supply chain attacks from wherever they build their OS images, which somehow build malicious images or just gets itself into the normal image builds and we auto update to.
Is this an unfounded worry? Does anyone know of the security measures in place to prevent attacks?
Auto update just feels weird to me, especially for something like my OS. I'm asking because I went and installed it and realised auto updating seems to be their philosophy... which is scary?
p.s. i couldnt find anyone online discussing this
Thonks

62361303

^{sh.itjust.works}

in reply to dogs0n

Mordikan

in reply to dogs0n Thursday, June 25, 2026, 12:18 AM (Received today, 6:46 AM)

This is a fair question to ask given recent events.
I don't run Fedora currently, so others could probably give a much more exact answer, but from what I understand of it:

Bazzite is built on top of Fedora with uBlue.
To compromise one of the packages, the attacker would have to bypass the Fedora enterprise team who are rage filled roid-driven experts who don't take kindly to that sort of thing.
They heavily secure their stuff.
Even if an attack was successful, it would have little lasting effect because of immutability and having access to easy rollbacks.

It's not impossible (like somehow stealing Bazzite's keys), but it's incredibly unlikely.
AUR/NPM package sketchiness is not anywhere on the same level as compromising Fedora's keys.

in reply to Mordikan

dogs0n

in reply to Mordikan Thursday, June 25, 2026, 12:29 AM (Received today, 6:46 AM)

Thanks for your answer. I have a lot of trust with Fedora, I guess I am more worried specifically about bazzites build process potentially being exploited. Sounding like I am being extra paranoid with Bazzite for maybe no reason