Github messages for voidlinux
 help / color / mirror / Atom feed
* [ISSUE] Package request: RustDesk
@ 2022-12-15 12:44 MechDR
  2023-01-05 19:36 ` notramo
                   ` (4 more replies)
  0 siblings, 5 replies; 6+ messages in thread
From: MechDR @ 2022-12-15 12:44 UTC (permalink / raw)
  To: ml

[-- Attachment #1: Type: text/plain, Size: 558 bytes --]

New issue by MechDR on void-packages repository

https://github.com/void-linux/void-packages/issues/41107

Description:
### Package name

rustdesk

### Package homepage

https://github.com/rustdesk/rustdesk

### Description

An open source remote desktop application similar to AnyDesk in look and feel, as well as simplicity. Source is available, AGPL-3.0 licensed, so it shouldn't be a problem to port it to Void Linux.

### Does the requested package meet the package requirements?

System, Compiled, Required

### Is the requested package released?

Yes

^ permalink raw reply	[flat|nested] 6+ messages in thread

* Re: Package request: RustDesk
  2022-12-15 12:44 [ISSUE] Package request: RustDesk MechDR
@ 2023-01-05 19:36 ` notramo
  2023-01-25 15:23 ` MechDR
                   ` (3 subsequent siblings)
  4 siblings, 0 replies; 6+ messages in thread
From: notramo @ 2023-01-05 19:36 UTC (permalink / raw)
  To: ml

[-- Attachment #1: Type: text/plain, Size: 450 bytes --]

New comment by notramo on void-packages repository

https://github.com/void-linux/void-packages/issues/41107#issuecomment-1372647684

Comment:
Keep in mind that RustDesk decrypts the stream on the server. I don't know the exact link to the issue, but if you want to do the research, start with F-Droid repo issue about anti-feature. There is an issue in the RustDesk repo, but the discussion is written with CJK characters, so translation is needed.

^ permalink raw reply	[flat|nested] 6+ messages in thread

* Re: Package request: RustDesk
  2022-12-15 12:44 [ISSUE] Package request: RustDesk MechDR
  2023-01-05 19:36 ` notramo
@ 2023-01-25 15:23 ` MechDR
  2023-01-27 18:05 ` notramo
                   ` (2 subsequent siblings)
  4 siblings, 0 replies; 6+ messages in thread
From: MechDR @ 2023-01-25 15:23 UTC (permalink / raw)
  To: ml

[-- Attachment #1: Type: text/plain, Size: 195 bytes --]

New comment by MechDR on void-packages repository

https://github.com/void-linux/void-packages/issues/41107#issuecomment-1403789816

Comment:
@notramo Link to the issue? I can't seem to find it.

^ permalink raw reply	[flat|nested] 6+ messages in thread

* Re: Package request: RustDesk
  2022-12-15 12:44 [ISSUE] Package request: RustDesk MechDR
  2023-01-05 19:36 ` notramo
  2023-01-25 15:23 ` MechDR
@ 2023-01-27 18:05 ` notramo
  2023-01-30 17:55 ` MechDR
  2023-02-04  4:44 ` superiums
  4 siblings, 0 replies; 6+ messages in thread
From: notramo @ 2023-01-27 18:05 UTC (permalink / raw)
  To: ml

[-- Attachment #1: Type: text/plain, Size: 1061 bytes --]

New comment by notramo on void-packages repository

https://github.com/void-linux/void-packages/issues/41107#issuecomment-1406897199

Comment:
https://forum.f-droid.org/t/known-vuln-rustdesk/18793
This links to https://github.com/rustdesk/rustdesk/issues/225
Even the comments in the code are written in CJK.

Also, a quick search to "rustdesk encryption issue" helped me to find this:
https://github.com/rustdesk/rustdesk/issues/451
The devs doesn't seem to be transparent enough about this issue. They just said to “upgrade to fix it”. They didn't provide a possible reason for the issue. That's not how security vulnerabilities are managed. The lack of explanation makes one think that it was an intentional backdoor, which got noticed, and they simply removed it in the next release.

There are not enough people to keep an eye on the project, which would be necessary, given their track record. It's worth adding an installation warning to the package if it will be packaged in Void Linux. I would personally recommend not packaging it at all.

^ permalink raw reply	[flat|nested] 6+ messages in thread

* Re: Package request: RustDesk
  2022-12-15 12:44 [ISSUE] Package request: RustDesk MechDR
                   ` (2 preceding siblings ...)
  2023-01-27 18:05 ` notramo
@ 2023-01-30 17:55 ` MechDR
  2023-02-04  4:44 ` superiums
  4 siblings, 0 replies; 6+ messages in thread
From: MechDR @ 2023-01-30 17:55 UTC (permalink / raw)
  To: ml

[-- Attachment #1: Type: text/plain, Size: 1463 bytes --]

New comment by MechDR on void-packages repository

https://github.com/void-linux/void-packages/issues/41107#issuecomment-1409065787

Comment:
Well, it's open source, one can always make a fork and fix the issue, while still making the client/servers backwards compatible, so that the fork can also connect to the free servers.

To be honest, I would still use it. I use it for mostly home stuff, some remote assistance, but I'm far from paranoid. It solves an issue many people have been having with AnyDesk, like no new builds for Linux x86 (the current builds still work, but no one knows for how long), and since AnyDesk is not open source, it may suffer from similar issues, but we have no idea, since the source is not available.

If it doesn't make it in the repo, so be it, I would probably make the template myself and make a new repo on my GH. I understand the concern for security, but people have real world problems that need cheap or free solutions ASAP. I have 4 headless RPis and 2 headless rigs (a NAS and an encoder). I might set up a local RustDesk server on one of them, for my personal needs, but if I only had the 2 headless rigs, then no, probably not, I would just use the free servers. Not to mention that one of the Pi's is involved in a robot project that I sometimes test on the field and I can't bring the RustDesk server every time I test outside, that's just impractical, so yes, in that case, I'll use the free servers (shrug).

^ permalink raw reply	[flat|nested] 6+ messages in thread

* Re: Package request: RustDesk
  2022-12-15 12:44 [ISSUE] Package request: RustDesk MechDR
                   ` (3 preceding siblings ...)
  2023-01-30 17:55 ` MechDR
@ 2023-02-04  4:44 ` superiums
  4 siblings, 0 replies; 6+ messages in thread
From: superiums @ 2023-02-04  4:44 UTC (permalink / raw)
  To: ml

[-- Attachment #1: Type: text/plain, Size: 186 bytes --]

New comment by superiums on void-packages repository

https://github.com/void-linux/void-packages/issues/41107#issuecomment-1416660039

Comment:
is there any good alternative solution ?

^ permalink raw reply	[flat|nested] 6+ messages in thread

end of thread, other threads:[~2023-02-04  4:44 UTC | newest]

Thread overview: 6+ messages (download: mbox.gz / follow: Atom feed)
-- links below jump to the message on this page --
2022-12-15 12:44 [ISSUE] Package request: RustDesk MechDR
2023-01-05 19:36 ` notramo
2023-01-25 15:23 ` MechDR
2023-01-27 18:05 ` notramo
2023-01-30 17:55 ` MechDR
2023-02-04  4:44 ` superiums

This is a public inbox, see mirroring instructions
for how to clone and mirror all data and code used for this inbox;
as well as URLs for NNTP newsgroup(s).