> due to how easy it is to trick them into installing something
replyYou have tools from large corporations where the official installation procedure involves copy pasting a command from a random blog post, run it with sudo and watch it download and execute a script from a random filehost. This is somehow deemed acceptable by everyone involved.
Meanwhile I can't use teams in our meeting rooms, since any form of internet access was deemed a security risk in rooms where customer projects could be discussed. This is in a day and age where 90% of customer meetings are done over the internet.
Anyone trying to follow sane practices in this industry just asks to end up in a padded cell.
> This is somehow deemed acceptable by everyone involved
replyBy some, not all. It's been crazy from the start and it is still crazy to pipe a script to bash!
> Anyone trying to follow sane practices in this industry just asks to end up in a padded cell.
replySame as it ever was.
As with many other things, AI exacerbates this problem. It’s so easy for many more of things things to happen unattended and in greater volume, and the AIs themselves can be tricked into doing these things, not helped by their patten of “prompt the user to approve 30 different inscrutable pythons and bash scripts”.
reply