Lars Wirzenius  

One of the reasons why shared libraries are imporant is the easy with which a security fix in a library can be distributed and deployed: you only need to fix it in one place, and upgrade one library. And restart any process using the library.

To achieve the same thing with static linking, one needs to rebuild anything using the library, using the new library version, and upgrade the programs anywhere they're installed.

Vendored libraries additionally require upgrading the vendored version.

1+
anycode
Follow

@liw patches to libraries may be security fixes or security breaches, in theory I agree, in reality I’d prefer discrete control over each system dependency.

· Librem Social · 0 · 0 · 0
Sign in to participate in the conversation
Librem Social

Librem Social is an opt-in public network. Messages are shared under Creative Commons BY-SA 4.0 license terms. Policy.

Stay safe. Please abide by our code of conduct.

(Source code)

image/svg+xml Librem Chat image/svg+xml