Google is not "providing" money, they pay for community service of maintaining a vital pice of code which they use to make money. And not even for a fair price, given that they use it mainly to lure people into a walled garden of their proprietary, marginally ethical services. The may open source (some) of their code, but the data remains theirs, while external interoperability of their services is virtually non-existent.
Announcement
Collapse
No announcement yet.
Google Provides Funding For Linux Kernel Developers To Focus On Security
Collapse
X
-
Sometimes I think maybe Google purposely made Chromium difficult to compile. Certain source files in Chromium take upwards of 4GB of RAM to compile. How is that even possible? I compile the Linux kernel sources, and nothing takes more than maybe 200MB or 300MB of RAM to compile. The last time I compiled Chromium 90 on my Raspberry Pi 4, it took 4 or 5 days to complete.
There are literally tens of thousands of source files in Chromium. There is no way any one person could possibly audit this code base in their lifetime. Google could slip any number of backdoors and malware in an obfuscated way into the code, and nobody would be the wiser...
When Google talks about improving Linux security, I get the feeling they're most interested in making their Android devices locked down so hard that they can eventually make Google Play a walled garden just like Apple does on iOS. Where nobody gets to run unless Google (not the end user who supposedly owns the device) allows them in.Last edited by ed31337; 24 February 2021, 04:12 PM.
- Likes 4
Comment
-
There is a lot of Google hate here but on balance I'd rather use AOSP vs iOS, Chromium over IE, projectzero vs nothing, etc. The top domain used for kernel commits is .... gmail.com (265,133) the 13th is google.com (55,055) so thank you google for having some aspects less evil than the other large corperations. Now if they could just make a mamory safe cpu and os for the masses.
- Likes 6
Comment
-
Originally posted by kvuj View PostHow awesome Fuschia is. Check out Quarkslab's vulnerabilities they found in Fuschia. In any other OS, it would lead to privilege escalation but not in this one (thanks to it's microkernel design)
- Likes 2
Comment
-
Originally posted by ezst036 View PostWe need a kernel patch that would close all of Google's spyware loopholes. No computer is "secure" with Google installed.
I trust Google's Linux contributions because it's about control. Google already has a lock on the browser and the main services in Android, so they don't need to compromise the OS to collect the personal data that is their lifeblood.
On the contrary, they depend on Linux being secure because they run it on their own systems and use it in their products. And if it's not secure, then that could be exploited by a competitor or worse, leading to either indirect or direct harm to Google.
Imagine if someone launched a mass ransomware attack on billions of Android phones at once, and demanded that Google pay them a few $ to unlock each one? That would destroy Android's popularity, overnight, and put Google in a very awkward position.
Another scenario is that someone hacks Google and steals some of their data troves. That creates new competitive pressure and could also blow up in a very public way, leading to new laws that restrict Google's activities.
So, yeah, regardless of how you feel about Google's morality and business practices, I do actually trust their work on the Linux kernel. For that matter I also feel Chrome and Android are reasonable secure (from others) and for the same reasons.
- Likes 8
Comment
-
Originally posted by coder View PostOn the contrary, they depend on Linux being secure because they run it on their own systems and use it in their products. And if it's not secure, then that could be exploited by a competitor or worse, leading to either indirect or direct harm to Google.
- Likes 3
Comment
-
Originally posted by ed31337 View PostSometimes I think maybe Google purposely made Chromium difficult to compile. Certain source files in Chromium take upwards of 4GB of RAM to compile. How is that even possible? I compile the Linux kernel sources, and nothing takes more than maybe 200MB or 300MB of RAM to compile. The last time I compiled Chromium 90 on my Raspberry Pi 4, it took 4 or 5 days to complete.
- Likes 3
Comment
Comment