Furthermore, you overestimate how difficult it is to obtain a valid certificate. All I need to do is own a domain.
This is true of TLS but not of code signing. There's no counterpart to Let's Encrypt ($0 for 90 days) or SSLs.com ($15 for three years), as far as I've been made aware. And a TLS certificate works across all major platforms, unlike an Authenticode certificate that works only for Windows, not for macOS or anything else. Apple is the only CA on macOS, and it charges $99 per year for a certificate that passes Gatekeeper.
I have a feeling I missed something important.
Plus the oldest person to be shot into space, and the only payload specialist (on that flight) that I know of that was his own payload (his job was to see how space flight affects old people).
It's a little bit like TLS certificates for internal applications -- many admins I know will do the absolute minimum required to stop the browser from showing a certificate error, then run away screaming.
The difference being that with TLS, browsers treat a domain-validated certificate as sufficient, but there's no counterpart to DV certificates in code signing.
how is bash - or any of the other unix-based shells, such as ksh, ssh, ash thru zsh - any more secure than PowerShell?
Not allowing the equivalent of ShellExecute on a script without the execute bit set, and saving files downloaded from the Internet without the execute bit.
What would a signature possibly mean to me as a user if I don't know you?
All code signing certificates issued by CAs trusted by popular operating systems are at least organizationally validated. This means two things: 1. the executable wasn't modified since it left the publisher's build farm, and 2. you know whom to sue if there are problems (especially in jurisdictions that don't allow a blanket disclaimer of all liability).
With or without a signature, my choice is still: either I run this script I need to my job, or I don't and I can't do my job (or it gets much, much harder).
I think the idea is that when faced with an unsigned script and a competitor's signed script, users will choose the signed script because of the guarantees of an OV certificate.
Then again, you can find out in a few minutes if your current machine will run fine on Linux.
If six years ago the answer turned out to be no, what would you have done at the time?
Under such a regime, how would a musician become "authorized"?
Is the adapter included with the phone, or is it sold separately? And does the adapter allow recharging the phone's battery while headphones are in use?
That only means you have to mark the pages containing the code you just generated read-only once you're done.
Several operating systems in wide use, such as Apple iOS and the operating systems of modern video game consoles, offer no way for third-party applications to switch a page from read-write to read-execute. When a page is allocated for data, the OS clears it first, and it stays non-executable until deallocated. Only the OS's executable loader* has the privilege to allocate pages for code, and once the loader loads a module, verifies its digital signature, and flips its pages from read-write to read-execute, the pages stay non-writable until deallocated.
NVIDIA wins in the universe where people treat the loss of freedom caused by a proprietary device driver as an acceptable cost of doing business.
Having used classic Windows apps on an 8" tablet, I can't imagine any sane person wanting to run them on a phone
Not even on a phone paired to a keyboard and connected to a 24" external monitor?
There is a computer in your microwave oven.
Do these "most commonly owned computers" that you mention offer general-purpose functionality when connected to an external monitor and paired to a Bluetooth keyboard, including the ability to take one tool's output and use it as another tool's input without needing each tool to be specifically aware of the other tools?
If you want application compatibility, not full system compatibility. Emulate 32 and 64 bit user mode instructions only.
Do you foresee ability to plug a peripheral into one of these Snapdragon devices through a USB OTG or USB C adapter and run its device driver correctly?
In particular since any emulator that focuses even slightly on performance uses dynamic compilation
Except a lot of mass-market ARM platforms nowadays have W^X security policies that ban dynamic compilation.
Q: How many IBM CPU's does it take to execute a job? A: Four; three to hold it down, and one to rip its head off.