1·
1 year ago@TheBaldness
No. Static libraries are a security risk.
@wet_lettuce
TheAnymouseProphet
Old-school geek, socialist, atheist - former evangelical. Post tech, biology, some Bible stuff, socialist stuff, some kink stuff too. At least on birdsite I did. Gender fluid.
- 0 Posts
- 3 Comments
Joined 3 years ago
Cake day: April 26th, 2022
You are not logged in. If you use a Fediverse account that is able to follow users, you can follow this user.
@wet_lettuce
Should be /etc or /usr/local/etc or /opt/etc or /opt/vendor/product/etc or ~/etc.With some exceptions for historic compatibility (like ~/.bashrc)
The man page should specify where.
@TheBaldness
When you bundle everything for an app inside a self-contained directory, it’s no different than static linking a binary.
An exploit in a library the package links against means that application is still vulnerable even if the same library on the operating system has been updated to fix the security flaw.