They are already interconnect at various points.
Schools are connected to university networks, university networks to loval government intranets and those are again probably at some point connected to the federal network.
I don’t wanna guess where else they have connections to like the police or legislative network.
It also means the entirety of the EU’s governments would be susceptible to the same vulnerabilities and bugs, and would share the same dependencies. Given recent issues with bad actors taking control of small but essential repos, this seems like a potentially dangerous security flaw.
Appoxo@lemmy.dbzer0.com 1 month ago
millie@beehaw.org 1 month ago
There’s a world of difference between interconnectedness and an enforced monoculture of dependencies on a wide range of insecure repos maintained by hobbyists.
webghost0101@sopuli.xyz 1 month ago
Most people who use anything other then windows for work will still use the best software for the job. Most of the advances made for it may likely also work on other distros.
I imagine this just provides a additional option that can freely be distributed and supported with european standards.
It also has potential to be used in schools moving people away from dependency on Microsoft.
IrritableOcelot@beehaw.org 1 month ago
I mean yes, but currently they’re all dependent on Windows, so its less of centralizing OSes, and more changing what its centralized on.
millie@beehaw.org 1 month ago
Okay, but when’s the last time someone created a security vulnerability by sneakily taking over a Windows dependency controlled by a single developer after pressuring them into handing the keys over with a bunch of sockpuppets?
IrritableOcelot@beehaw.org 1 month ago
Sure the threat model is different, I’m just saying it’s still a single point of failure.
millie@beehaw.org 1 month ago
It’s not, though. It’s a much wider potential for failure, as there are a great number of dependencies that are often left to individual developers to maintain. That may be a somewhat reasonable amount of risk when you’ve got multiple options for dependencies and no major target, but when the entire EU relies on single individual maintainers? That’s a massively exploitable threat vector. It would be absurd to assume no one will take advantage given what we’ve already seen.
It would be an extremely foolish move to put the whole EU’s security on one single set of open source dependencies. Microsoft at least has a financial and legal incentive to try to prevent straight up breaches by state actors, shitty as they may be. There’s no such resource allocation or responsibility when it comes to open source repos.