this post was submitted on 24 Aug 2023
108 points (100.0% liked)

Technology

37726 readers
45 users here now

A nice place to discuss rumors, happenings, innovations, and challenges in the technology sphere. We also welcome discussions on the intersections of technology and society. If it’s technological news or discussion of technology, it probably belongs here.

Remember the overriding ethos on Beehaw: Be(e) Nice. Each user you encounter here is a person, and should be treated with kindness (even if they’re wrong, or use a Linux distro you don’t like). Personal attacks will not be tolerated.

Subcommunities on Beehaw:


This community's icon was made by Aaron Schneider, under the CC-BY-NC-SA 4.0 license.

founded 2 years ago
MODERATORS
top 22 comments
sorted by: hot top controversial new old
[–] const_void@lemmy.ml 40 points 1 year ago (1 children)

No idea why folks still use stuff like this when there are open source alternatives like 7zip and Nana Zip.

[–] tux0r@feddit.de 9 points 1 year ago (2 children)

I use WinRAR (as a switch from 7-Zip) because it works well enough, is fast and stable and has good compression. For me, switching to another Windows archiver would have no merit.

[–] bug@lemmy.one 37 points 1 year ago (2 children)
[–] TheMadnessKing@lemdro.id 5 points 1 year ago

Honestly, this is like the first time I heard WinRAR has this big security vulnerability. But I am still planning to stay on WinRAR given its easy to use UI and unlimited free trial.

[–] tux0r@feddit.de 3 points 1 year ago (2 children)

It is. Coincidentally, security was one of the reasons to uninstall 7-Zip.

[–] dan@upvote.au 17 points 1 year ago* (last edited 1 year ago) (1 children)

There's barely any CVEs on that page. It's likely a security researcher did some fuzzing of the executable and found a few issues at once.

Have you looked at how many vulnerabilities there's been in things like Windows, MacOS, Chrome, etc?

[–] tux0r@feddit.de 3 points 1 year ago (1 children)

I have. The point is that there is no software without vulnerabilities.

[–] dan@upvote.au 12 points 1 year ago (1 children)

The point is that there is no software without vulnerabilities.

Definitely true, but that conflicts with this:

Coincidentally, security was one of the reasons to uninstall 7-Zip.

If you uninstalled software because of security, you wouldn't have any software left :)

[–] tux0r@feddit.de 2 points 1 year ago (2 children)

Also true. I was probably too impatient when I bought a WinRAR license over night. But now I have it and I use it. :-)

[–] averyminya 9 points 1 year ago (1 children)
[–] tux0r@feddit.de 3 points 1 year ago (1 children)

I even own legitimate Total Commander and mIRC licenses!

[–] snowbell 2 points 1 year ago

Wow, a real unicorn! 🦄

[–] dan@upvote.au 8 points 1 year ago

I'm sure they're still celebrating someone purchasing a license :)

[–] morry040@kbin.social 9 points 1 year ago
[–] null@slrpnk.net 7 points 1 year ago (1 children)

Is WinRAR really faster, more stable, and has better compression than 7-Zip? I haven't used WinRAR in probably over a decade at this point.

[–] tux0r@feddit.de 2 points 1 year ago

It depends. The RAR5 format used by newer WinRAR versions (the "old" one is still supported just well) can have smaller archives than 7z, but the opposite is also true. Still, yes, WinRAR is in my experience faster and more stable.

(Note that "as small as possible" is not usually the most relevant point. The best compression is currently reached with the ZPAQ format, but using it with maximum compression settings is painfully slow.)

[–] style99@kbin.social 10 points 1 year ago

In a report released today, researchers from Group-IB said they discovered the WinRAR zero-day being used to target cryptocurrency and stock trading forums, where the hackers pretended to be other enthusiasts sharing their trading strategies.

These forum posts contained links to specially crafted WinRAR ZIP or RAR archives that pretended to include the shared trading strategy, consisting of PDFs, text files, and images.

I see an "invest in bitcoin" and I immediately think caveat emptor.

[–] torafugu@artemis.camp 9 points 1 year ago (1 children)

Thank heavens for Linux and 7zip.

[–] tux0r@feddit.de 5 points 1 year ago (2 children)

Gee, I wonder whether it's possible to have zero-day exploits on Linux and 7-Zip.

[–] Kes@lemmy.blahaj.zone 1 points 1 year ago

Barely anyone uses Linux, and among those who do, distros vary wildly enough between each other to the point of breaking viruses that it's just not worth the effort to make viruses for them compared to Windows or Mac

[–] torafugu@artemis.camp 1 points 1 year ago (1 children)

It is, but Linux has such a low desktop usage share that it wouldn't really be considered as a target for hackers. I believe that hackers really only target Linux servers, not desktops.

[–] tux0r@feddit.de 2 points 1 year ago

How would a hacker even notice the difference between a Linux server and.a Linux desktop? Those are the same thing.