Hacker Newsnew | past | comments | ask | show | jobs | submitlogin

> Giving instructions for someone non-technical to install Python and run a script with it, and then helping them figure out how to interpret those instructions, is a heck of a lot more complicated.

Training someone to accept binary file and run it without question is just dangerous.



Have you been using windows in the past 5 years?

Accepting random binaries from the net and running them is the main software distribution model.


I am talking about scenario that "a friend" gives you binary to run. It is different from downloading software from a trusted source.


This is not a random friend giving you a binary. This is where you asked a trusted friend to build you a binary, and he delivered it.


Someone could simulate your trusted friend, that's my point.


Big difference between "run a binary from me" and "run a binary from anyone"


Not really. It rather easy to assume someone's identity online and then make target person to run the binary without thinking twice, especially if such practice is already established.


> It rather easy to assume someone's identity online

So you just tell you friend "Only run a binary when I physically come over to your house with a USB drive" or "Only when I call you on the phone"




Guidelines | FAQ | Lists | API | Security | Legal | Apply to YC | Contact

Search: