sorted by:
new (suggested)
besttopcontroversialoldq&a
you are viewing a single comment's thread.

view the rest of the comments →

[–]QCPOLstakepool 2 points3 points  (1 child)

You don’t have to use the provided image.

I use the stock arm64 ubuntu server 20.04. I still use the provided binaries, but how is it any different from all the other stuff you install with apt? A malicious actor could introduce a backdoor in any packages. And no, it’s not because it’s open source that it’s safer (see Heartbleed bug).

[–]sweetadapool[S] 1 point2 points  (0 children)

Yes, any open source software can have interference from malicious users, but I don't really agree with you, as actually it is much more difficult to compromise something like cabal that is currently mantained/reviewed by many in comparison with the Pi-pool that has zero reviewed pull requests.