this post was submitted on 24 Mar 2025
107 points (92.8% liked)

Linux

52665 readers
1435 users here now

From Wikipedia, the free encyclopedia

Linux is a family of open source Unix-like operating systems based on the Linux kernel, an operating system kernel first released on September 17, 1991 by Linus Torvalds. Linux is typically packaged in a Linux distribution (or distro for short).

Distributions include the Linux kernel and supporting system software and libraries, many of which are provided by the GNU Project. Many Linux distributions use the word "Linux" in their name, but the Free Software Foundation uses the name GNU/Linux to emphasize the importance of GNU software, causing some controversy.

Rules

Related Communities

Community icon by Alpár-Etele Méder, licensed under CC BY 3.0

founded 5 years ago
MODERATORS
nooter692@lemmy.ml
AgreeableLandscape@lemmy.ml
MarcellusDrum@lemmy.ml
cypherpunks@lemmy.ml
cyclohexane@lemmy.ml
d3Xt3r@lemmy.nz
107
Ubuntu explores replacing gnu utils with rust based uutils (www.cyberciti.biz)
submitted 1 week ago by Zenlix@lemm.ee to c/linux@lemmy.ml
69 comments fedilink hide all child comments
 

At first I was sceptical, but after a few thought, I came to the solution that, if uutils can do the same stuff, is/stays actively maintained and more secure/safe (like memory bugs), this is a good change.

What are your thoughts abouth this?

(page 2) 19 comments
sorted by: hot top controversial new old
[–] zaemz@lemmy.world 15 points 1 week ago (13 children)

I personally don't see the point.

[–] ParetoOptimalDev@lemmy.today 9 points 1 week ago (1 children)

I fear moving away from GPL that moving to Rust seems to bring, but Rust does fix real memory issues.

Take the recent rsync vulnerabilities for example.

https://www.cyberciti.biz/linux-news/cve-2024-12084-rsyn-security-urgent-update-needed-on-unix-bsd-systems/#more-2215

At least this one in a Rust implementation of rsync would have very likely been avoided:

CVE-2024-12085 – A flaw was found in the rsync daemon which could be triggered when rsync compares file checksums. This flaw allows an attacker to manipulate the checksum length (s2length) to cause a comparison between a checksum and uninitialized memory and leak one byte of uninitialized stack data at a time. Info Leak via uninitialized Stack contents defeats ASLR.

[–] 0x0@programming.dev -1 points 1 week ago (3 children)

I fear moving away from GPL that moving to Rust seems to bring, but Rust does fix real memory issues.

So you prefer closed-source code to potentially unsafe open-source code?

Take the recent rsync vulnerabilities for example.

Already fixed, in software that's existed for years and is used by millions. But Oh no, memory issues, let's rewrite that in ! will surely result in a better outcome.

[–] Kusimulkku@lemm.ee 4 points 1 week ago

They're MIT licensed.

load more comments (2 replies)
[–] lord_ryvan@ttrpg.network 7 points 1 week ago (1 children)

Mainly memory safety; split (which is also used for other programs like sort) had a memory heap overflow issue last year to name one. The GNU Coreutils are well tested and very well written, the entire suite of programs has a CVE only once every few years from what I can see, but they do exist and most of those would be solved with a memory and type safe language.

That said, Rust also handles parallelism and concurrency much better than C ever could, though most of these programs don't really benefit from that or not much since they already handled this quite well, especially for C programs.

[–] 0x0@programming.dev -1 points 1 week ago (4 children)

but they do exist and most of those would be solved with a memory and type safe language.

Maybe.

Still, there are other sources of bugs beyond memory management.

And i'd rather have GPL-ed potentially unsafe C code to... closed-source Rust code.

load more comments (4 replies)
load more comments (11 replies)
[–] pewpew@feddit.it 10 points 1 week ago (1 children)

~~GNU/Linux~~ Rust/Linux

[–] lord_ryvan@ttrpg.network 4 points 1 week ago (1 children)

uutils/Linux?

load more comments (1 replies)
[–] joel_feila@lemmy.world 6 points 1 week ago (2 children)

So i hear that removing all the gnu stuff opens linux to be redistributed with a bew liesinse like mit. Which means its a little more closed iff a little more monitized.

Not knowledge enough on my own to know for sure. If someone with more knowledge could explain.

[–] atzanteol@sh.itjust.works 19 points 1 week ago (2 children)

This is one of the old-time original arguments in the OSS community.

The crux of the matter is that the GNU licenses require that modifications be released back to the community. Other "more permissible" licenses like MIT do not.

So if you want to make a commercial version of X, and X is under a GPL, then any changes you make need to be released under the GPL. The idea being "I shared this code with the community with the intent that you can use it for free and modify it as you like, but you need to share back what you do." Also called "Share and share alike".

This defends against "embrace, extend, extinguish" tactics that companies like Microsoft has loved to do. They can't take your code, modify it for their own purposes and re-sell it possibly making a more popular version that is now proprietary.

load more comments (2 replies)
load more comments (1 replies)
[–] DeuxChevaux@lemmy.world 6 points 1 week ago (4 children)

I wonder whether Linux Mint will follow suit?

[–] lord_ryvan@ttrpg.network 5 points 1 week ago

Likely not anytime soon as they tend to hold off latest features and prefer older (but maintained) LTS versions of just about everything. Also especially not if it turns out to be a bad idea; they explicitly build Mint without Snaps since their inclusion in the Ubuntu base.

[–] fatur0000new@lemmy.ml 5 points 1 week ago* (last edited 6 days ago)

As I recall Ubuntu will allow to switch uutils to coreutils. So it looks like Linux Mint will continue to use coreutils

load more comments (2 replies)
load more comments
view more: ‹ prev next ›