LinuxQuestions.org
Latest LQ Deal: Latest LQ Deals
Go Back   LinuxQuestions.org > Forums > Linux Forums > Linux - General
User Name
Password
Linux - General This Linux forum is for general Linux questions and discussion.
If it is Linux Related and doesn't seem to fit in any other forum then this is the place.

Notices


Reply
  Search this Thread
Old 06-08-2015, 01:59 PM   #16
buffer overflow
LQ Newbie
 
Registered: May 2015
Posts: 10

Rep: Reputation: Disabled

I'm not ashamed to admit it but I did use sourceforge.net and freshmeat.net alot back in the mid 2000s when I was using slackware. When I started with slackware in the beginning, I was not aware of slackbuilds.org. And I when I did, I used all three sources to get the programs and the dependencies.

I'm not using slackware today, but if I did, I would definitely stick to just slackbuilds.org as I am a bit leery to using sourceforge.net as a trusted site and with thousands of programs it's hard to tell which ones will have malware or not.

Last edited by buffer overflow; 06-08-2015 at 02:03 PM.
 
Old 06-08-2015, 05:35 PM   #17
jefro
Moderator
 
Registered: Mar 2008
Posts: 21,937

Rep: Reputation: 3619Reputation: 3619Reputation: 3619Reputation: 3619Reputation: 3619Reputation: 3619Reputation: 3619Reputation: 3619Reputation: 3619Reputation: 3619Reputation: 3619
Has anyone here observed their downloads modified by sourceforge?
 
Old 06-08-2015, 06:10 PM   #18
Keith Hedger
Senior Member
 
Registered: Jun 2010
Location: Wiltshire, UK
Distribution: Linux From Scratch, Slackware64, Partedmagic
Posts: 3,137

Rep: Reputation: 855Reputation: 855Reputation: 855Reputation: 855Reputation: 855Reputation: 855Reputation: 855
no! this is a load of parnoid, conspiracy theory rubbish! been using sourceforge for years, if there are any dodgy binary installs it's because of the people who uploaded them and not sourceforge, you stand the same chance of getting an iffy binary from anywhere, the moral being don't install stuff that you don't know what it is, and as for 'infecting' source code that's just plain la la land, and no i am not connected with source forge and yes i do have a couple of really old projects on it that i haven't updated in some years.
 
Old 06-08-2015, 06:17 PM   #19
John VV
LQ Muse
 
Registered: Aug 2005
Location: A2 area Mi.
Posts: 17,622

Rep: Reputation: 2651Reputation: 2651Reputation: 2651Reputation: 2651Reputation: 2651Reputation: 2651Reputation: 2651Reputation: 2651Reputation: 2651Reputation: 2651Reputation: 2651
Quote:
Has anyone here observed their downloads modified by sourceforge?
in the last ten years
only linux and a few windows
BUT !!!! i build from source


it has been over ten years since i installed a win XP binary from SF


for gimp is use the gimp mirror page ( or git for the development code"gimp 2.9")
for Nmap ( the other one taken over) i use zypper or yum


BUT

i have seen ADVERTISING !!! that really dose look like a download link

and i did look at the nmap page
and the ONLY one that was working WAS!!!! owned by "sf_admin_1 and 3"
the NORMAL nmap page was basically DEAD in the water

Last edited by John VV; 06-08-2015 at 06:21 PM.
 
Old 06-09-2015, 10:18 AM   #20
DavidMcCann
LQ Veteran
 
Registered: Jul 2006
Location: London
Distribution: PCLinuxOS, Debian
Posts: 6,131

Rep: Reputation: 2302Reputation: 2302Reputation: 2302Reputation: 2302Reputation: 2302Reputation: 2302Reputation: 2302Reputation: 2302Reputation: 2302Reputation: 2302Reputation: 2302
Quote:
Originally Posted by Keith Hedger View Post
no! this is a load of parnoid, conspiracy theory rubbish!
You and I are wasting our time, Keith! People who believe in wicked men in suits don't need evidence to set them off and so won't be deterred by lack of it.
 
Old 06-09-2015, 10:27 AM   #21
suicidaleggroll
LQ Guru
 
Registered: Nov 2010
Location: Colorado
Distribution: OpenSUSE, CentOS
Posts: 5,573

Rep: Reputation: 2142Reputation: 2142Reputation: 2142Reputation: 2142Reputation: 2142Reputation: 2142Reputation: 2142Reputation: 2142Reputation: 2142Reputation: 2142Reputation: 2142
Quote:
Originally Posted by jefro View Post
Has anyone here observed their downloads modified by sourceforge?
No. I don't go there all that often, but I've never seen anything out of the ordinary.
 
Old 06-09-2015, 10:38 AM   #22
Keith Hedger
Senior Member
 
Registered: Jun 2010
Location: Wiltshire, UK
Distribution: Linux From Scratch, Slackware64, Partedmagic
Posts: 3,137

Rep: Reputation: 855Reputation: 855Reputation: 855Reputation: 855Reputation: 855Reputation: 855Reputation: 855
Quote:
Originally Posted by DavidMcCann View Post
You and I are wasting our time, Keith! People who believe in wicked men in suits don't need evidence to set them off and so won't be deterred by lack of it.
Could be right!, just needed to inject a bit of sanity, don't know why, just a masochist I suppose
 
Old 06-09-2015, 12:03 PM   #23
onebuck
Moderator
 
Registered: Jan 2005
Location: Central Florida 20 minutes from Disney World
Distribution: Slackware®
Posts: 13,922

Original Poster
Blog Entries: 44

Rep: Reputation: 3158Reputation: 3158Reputation: 3158Reputation: 3158Reputation: 3158Reputation: 3158Reputation: 3158Reputation: 3158Reputation: 3158Reputation: 3158Reputation: 3158
Member response

Hi,

No one has spoken of wicked men in suits. Just that some caution for any downloads from SourceForge. Evidence shows that SourceForge has injected add junkware to some downloads. Who is to say they would not do so to OpenSource Gnu/Linux applications. Trust is a valued sense but once you have caused something to dis-trust then it becomes harder to trust again.

Personally, that is the reason for my posting of this thread. I do not trust SourceForge any longer therefore no downloads from that site for me and for my clients who hire me. You can call it paranoid but to me I will caution on the safe side every time. I can get most of what I need elsewhere to build on my own safe system.
Hope this helps.
Have fun & enjoy!
 
Old 06-09-2015, 12:33 PM   #24
273
LQ Addict
 
Registered: Dec 2011
Location: UK
Distribution: Debian Sid AMD64, Raspbian Wheezy, various VMs
Posts: 7,680

Rep: Reputation: 2373Reputation: 2373Reputation: 2373Reputation: 2373Reputation: 2373Reputation: 2373Reputation: 2373Reputation: 2373Reputation: 2373Reputation: 2373Reputation: 2373
I read the linked-to statement by the GIMP project and I may try to look for examples as when I have downloaded things like GIMP I have realised they are GNU (or similar) so stopped any downloads with other things -- I know it goes on but Sorceforge may not do that.
I do think that any "flashing banner advert" for a version of the program from somebody other than the creators may not be obvious.
I have seen that "Green Button" but I can't confirm what it does so on my evidence it is safe to download from SourceForge.
 
Old 06-09-2015, 06:43 PM   #25
syg00
LQ Veteran
 
Registered: Aug 2003
Location: Australia
Distribution: Lots ...
Posts: 21,103

Rep: Reputation: 4117Reputation: 4117Reputation: 4117Reputation: 4117Reputation: 4117Reputation: 4117Reputation: 4117Reputation: 4117Reputation: 4117Reputation: 4117Reputation: 4117
I see it as "someone has to pay the piper".
I haven't noticed anything nefarious with sf - I often recommend people download bootinfoscript when we are asked to shoot boot problems here e.g.
Don't use sf a lot other than that.
 
Old 06-09-2015, 07:28 PM   #26
rokytnji
LQ Veteran
 
Registered: Mar 2008
Location: Waaaaay out West Texas
Distribution: antiX 23, MX 23
Posts: 7,063
Blog Entries: 21

Rep: Reputation: 3470Reputation: 3470Reputation: 3470Reputation: 3470Reputation: 3470Reputation: 3470Reputation: 3470Reputation: 3470Reputation: 3470Reputation: 3470Reputation: 3470
Sorry Bros. This is one mindset I won't adhere to.

But gnu/linux is all about choice. And. Not Open Source.

Just to elaborate by edit:

Quote:
Who is to say they would not do so to OpenSource Gnu/Linux applications.
I could care less as I know CNET and others are bigger offenders when using what I am interpreting
as using what is is called opensource gnu/linux applications in a .exe file for windows.
I just do not care how the windows world has to deal with linux made programs pawned off as open source.

2nd edit: durn it. I forgot my new attitude in my signature statement.
I gotta improve that.

Last edited by rokytnji; 06-09-2015 at 07:36 PM.
 
Old 06-16-2015, 02:53 PM   #27
onebuck
Moderator
 
Registered: Jan 2005
Location: Central Florida 20 minutes from Disney World
Distribution: Slackware®
Posts: 13,922

Original Poster
Blog Entries: 44

Rep: Reputation: 3158Reputation: 3158Reputation: 3158Reputation: 3158Reputation: 3158Reputation: 3158Reputation: 3158Reputation: 3158Reputation: 3158Reputation: 3158Reputation: 3158
The slow death of SourceForge

Hi,

The slow death of SourceForge;
Quote:
In today's open source roundup: SourceForge may have lingered for too long. Plus: It's time for developers and users to move on from SourceForge. And redditors discuss the tactics of SourceForge
 
  


Reply


Thread Tools Search this Thread
Search this Thread:

Advanced Search

Posting Rules
You may not post new threads
You may not post replies
You may not post attachments
You may not edit your posts

BB code is On
Smilies are On
[IMG] code is On
HTML code is Off



Similar Threads
Thread Thread Starter Forum Replies Last Post
Linux script to download the latest release of a sourceforge project? dennis123123 Linux - General 1 04-23-2009 11:44 PM
Can't download glui from sourceforge, need someone to mirror it if possible... POW R TOC H General 4 11-04-2008 10:41 AM
i don't link to sourceforge.net,why ywchen2000 General 3 01-26-2006 05:04 AM
Software Patents rear their ugly heads Calum General 7 08-22-2003 07:19 PM

LinuxQuestions.org > Forums > Linux Forums > Linux - General

All times are GMT -5. The time now is 12:24 PM.

Main Menu
Advertisement
My LQ
Write for LQ
LinuxQuestions.org is looking for people interested in writing Editorials, Articles, Reviews, and more. If you'd like to contribute content, let us know.
Main Menu
Syndicate
RSS1  Latest Threads
RSS1  LQ News
Twitter: @linuxquestions
Open Source Consulting | Domain Registration