Atemu to [email protected] • 8 months agobackdoor in upstream xz/liblzma leading to ssh server compromisewww.openwall.commessage-square94fedilinkarrow-up1492arrow-down15cross-posted to: [email protected]selfhostedlinuxnetsec[email protected][email protected][email protected][email protected]
arrow-up1487arrow-down1external-linkbackdoor in upstream xz/liblzma leading to ssh server compromisewww.openwall.comAtemu to [email protected] • 8 months agomessage-square94fedilinkcross-posted to: [email protected]selfhostedlinuxnetsec[email protected][email protected][email protected][email protected]
minus-squareDaniel QuinnlinkfedilinkEnglish3•8 months agoWhy didn’t this become a thing? Surely in 2024, we should be able to build packages from source and sign releases with a private key.
minus-squareNatanaellinkfedilink5•8 months agoIt’s becoming more of a thing but a lot of projects are so old that they haven’t been able to fix their entire build process yet
Why didn’t this become a thing? Surely in 2024, we should be able to build packages from source and sign releases with a private key.
It’s becoming more of a thing but a lot of projects are so old that they haven’t been able to fix their entire build process yet