undefined | Better HN

0 pointsEForEndeavour4y ago0 comments

Naive questions:

- what do you mean by "miners" in this context? Malicious contributors sneaking crypto-mining logic into the codebase?

- doesn't the concern about Trojans and spyware affect every other open-source project in existence? How have they been protecting against that, and why couldn't the Winamp maintainers take similar measures?

0 comments

RF_Savage4y ago

More like precompiled binaries being distributed by malicious stuff added in.

How will you know which winamp.exe is the legitimate one?

dale_glass4y ago

Code signing has been a thing in Windows for a long time now. Besides that, just the usual "the official .exe is whatever you find at the official site"

Downloading from random archive sites fortunately is a trend that went away.

j / k navigate · click thread line to collapse