• mvirts@lemmy.world
    link
    fedilink
    arrow-up
    12
    ·
    9 months ago

    Great time to mention tools like testdisk that can easily recover data that has been recently deleted on common filesystems.

  • Sabata11792@kbin.social
    link
    fedilink
    arrow-up
    3
    ·
    9 months ago

    Reading the comments, looks like bad/old code mixed with a big update rather than anything malicious. I even ran into themes that killed my KDE last night. Had to purge the configs themes to get it working. Damn glad I didn’t wipe my entire setup.

    • Bro666@lemmy.kde.socialM
      link
      fedilink
      arrow-up
      6
      ·
      9 months ago

      Correct. The theme creator missed a variable that is not part of the Plasma environment anymore, and instead of running

      rm -Rf [something]
      

      it run

      rm -Rf
      

      😬

  • Pantherina@feddit.de
    link
    fedilink
    arrow-up
    3
    ·
    9 months ago

    Extensions need to follow standards, and be installed as non-executable files in defined categories.

    Everything else has to be removed or behind a huge warning.

    • Bro666@lemmy.kde.socialM
      link
      fedilink
      arrow-up
      6
      ·
      9 months ago

      That is not possible. widgets and Global themes have to be able to execute code to work.

      By the way: the code was not malicious, just badly written.

      • Pantherina@feddit.de
        link
        fedilink
        arrow-up
        1
        ·
        9 months ago

        Why do global themes need to do that? Arent they just color and image files, maybe audio?

        It doesnt really matter if the code was malicious or not, this should not be possible.

        Another example of how damn insecure linux is. Just because its not the snap store, we dont have tons of malicious addons on pling.

    • Pantherina@feddit.de
      link
      fedilink
      arrow-up
      13
      ·
      9 months ago

      Uhm, Wayland improves security but its just one component. Will a bash script work the same on Wayland as on XOrg? Yes.

    • Bro666@lemmy.kde.socialM
      link
      fedilink
      arrow-up
      7
      ·
      9 months ago

      You must have heard that old chestnut about how “the weakest security link in the security chain is the user” by now. There is nothing any technology can do if the user decides to install insecure stuff. Even before today, the KDE Store prominently displayed warnings about being careful with the content.