this post was submitted on 29 Aug 2023
628 points (99.8% liked)

Technology

37717 readers
406 users here now

A nice place to discuss rumors, happenings, innovations, and challenges in the technology sphere. We also welcome discussions on the intersections of technology and society. If it’s technological news or discussion of technology, it probably belongs here.

Remember the overriding ethos on Beehaw: Be(e) Nice. Each user you encounter here is a person, and should be treated with kindness (even if they’re wrong, or use a Linux distro you don’t like). Personal attacks will not be tolerated.

Subcommunities on Beehaw:


This community's icon was made by Aaron Schneider, under the CC-BY-NC-SA 4.0 license.

founded 2 years ago
MODERATORS
you are viewing a single comment's thread
view the rest of the comments
[–] GentlemanLoser@ttrpg.network 4 points 1 year ago (1 children)

You know there's another option besides not passing security holes to the users and then patching them later right?

[–] boolean@kbin.social 7 points 1 year ago (1 children)

you realize modern browsers have millions of lines and over a decade (or two!) of legacy code running that are under constant scrutiny by actors who spend all their time finding exploits in binary executables, right?

you realize your operating system also ships system updates on a regular, often daily basis, right?

[–] GentlemanLoser@ttrpg.network 1 points 1 year ago (1 children)

How is any of that the user's problem

[–] fox_the_apprentice@lemmynsfw.com 2 points 1 year ago* (last edited 1 year ago)

"How is a security hole in the thing people use to do their banking a problem for the user?"

If you think it's just a matter of writing a completely fresh browser every few years to remove legacy code, then I invite you to do so and prove us all wrong. I'll be looking forward to it, along with all of the new security holes you open by using new, untested code all the time.

In the meantime, feel free to use an ESR version of whatever browser you prefer a slower update cycle while still being supported for any major security findings.