cross-posted from: https://sh.itjust.works/post/62361303
Hello good people.
Is no one afraid of Bazzites auto updating nature?
I am myself worried about the potential for well timed supply chain attacks from wherever they build their OS images, which somehow build malicious images or just gets itself into the normal image builds and we auto update to.
Is this an unfounded worry? Does anyone know of the security measures in place to prevent attacks?
Auto update just feels weird to me, especially for something like my OS. I’m asking because I went and installed it and realised auto updating seems to be their philosophy… which is scary?
p.s. i couldnt find anyone online discussing this
Thonks
You can chose not to update and stick to a specific image. Check the docs.
O, it looks like you can rebase to a specific version and bazzite won’t attempt auto updating in such cases: https://docs.bazzite.gg/Installing_and_Managing_Software/Updates_Rollbacks_and_Rebasing/rebase_guide/
Thank you, I think that might solve my issue if I can just periodically change my branch to the latest version and pin it there.
Also, not all versions update the same way. e.g.: bazzite-deck vs bazzite have different update mechanisms. Again, docs.
I’ve been ~2.5 years on the same Bazzite install. I Freaking love it. Best computing experience I ever had. I don’t do or learn anything and it just keeps on working perfectly since the day I installed it. Pure Bliss.