180
you are viewing a single comment's thread
view the rest of the comments
view the rest of the comments
this post was submitted on 29 Mar 2024
180 points (100.0% liked)
Free and Open Source Software
17949 readers
113 users here now
If it's free and open source and it's also software, it can be discussed here. Subcommunity of Technology.
This community's icon was made by Aaron Schneider, under the CC-BY-NC-SA 4.0 license.
founded 2 years ago
MODERATORS
The story about this backdoor is really wild if it's true https://lcamtuf.substack.com/p/technologist-vs-spy-the-xz-backdoor
That’s what all of the analysis is pointing to.
Since the analysis is not complete, the other thing people need to remember is that nobody knows if ssh was the only target or just the only one that was noticed. A ton of stuff uses lzma, including web browsers and password safes.