this post was submitted on 17 Feb 2026
956 points (99.7% liked)

Technology

83990 readers
3161 users here now

This is a most excellent place for technology news and articles.

Our Rules

  1. Follow the lemmy.world rules.
  2. Only tech related news or articles.
  3. Be excellent to each other!
  4. Mod approved content bots can post up to 10 articles per day.
  5. Threads asking for personal tech support may be deleted.
  6. Politics threads may be removed.
  7. No memes allowed as posts, OK to post as comments.
  8. Only approved bots from the list below, this includes using AI responses and summaries. To ask if your bot can be added please contact a mod.
  9. Check for duplicates before posting, duplicates may be removed
  10. Accounts 7 days and younger will have their posts automatically removed.

Approved Bots

founded 2 years ago
MODERATORS
L3s@lemmy.world
enu@lemmy.world
technopagan@lemmy.world
L4s@lemmy.world
L3s@hackingne.ws
956
Gentoo Linux Begins Codeberg Migration In Moving Away From GitHub, Avoiding Copilot (www.phoronix.com)
submitted 2 months ago by throws_lemy@lemmy.nz to c/technology@lemmy.world
79 comments fedilink hide all child comments
you are viewing a single comment's thread
view the rest of the comments
[–] cecilkorik@piefed.ca 24 points 2 months ago (8 children)

I know this is probably sarcastic but honestly Gentoo's great if you don't trust binaries by default. Nothing is an absolute guarantee against compromise, but it's an awful lot harder to compromise a source code repository or a compiler without anyone noticing (especially if you stick to stable versions) than it is to compromise a particular binary of some random software package. I trust most package maintainers, but they're typically overworked volunteers and not all of them are going to have flawless security or be universally trustworthy.

I like building my own binaries from source code whenever possible.

[–] bearboiblake@pawb.social 9 points 2 months ago (7 children)

Genuine question from a longtime Linux user who never tried Gentoo - doesn't updating take forever? I used a source build of firefox for a bit and the build took forever, not to mention the kernel itself

[–] cecilkorik@piefed.ca 5 points 2 months ago* (last edited 2 months ago) (2 children)

Depends on your system specs, but.... yes, generally speaking. There is a reason most people and most distros use binaries. Even Gentoo can use binaries for some stuff.

Are you going to suffer significant damage if your updates take forever though? What's the hurry? The number of times I have literally needed the absolute latest version of something installed right now are pretty damn minimal. The major exception is widespread, exploited zero-day remote-access vulnerabilities, but those are rare, and especially rare are ones that affect the exact versions and configurations of software that I am currently using and cannot reasonably just opt to "stop" using. Even so, there are usually other ways to block the network traffic, disable the offending part of the configuration, or otherwise mitigate the risk. Besides, there's nothing stopping you from literally just downloading a patched binary if that's what you need at that moment.

Patience is a virtue, and it's generally good for you. You don't have to be addicted to constant updates, but you do need to be thoughtful and understand how to build defense-in-depth.

[–] bearboiblake@pawb.social 5 points 2 months ago (1 children)

It's not so much "I must have the latest version NOW" and more that while it was building my system load would spike from 0.1 to 7+ and everything ran like shit for like half an hour.

I'm a messy, impatient boy - I know my limitations!

[–] cecilkorik@piefed.ca 1 points 2 months ago

That's fair, it's certainly not for everyone (nor for every situation).

load more comments (4 replies)
load more comments (4 replies)