Possibly linux to Linux@lemmy.mlEnglish · 8 months agoXZ backdoor in a nutshellimagemessage-square157fedilinkarrow-up11.23Karrow-down110 cross-posted to: [email protected]
arrow-up11.22Karrow-down1imageXZ backdoor in a nutshellPossibly linux to Linux@lemmy.mlEnglish · 8 months agomessage-square157fedilink cross-posted to: [email protected]
minus-squarePossibly linuxOPlinkfedilinkEnglisharrow-up7·8 months agoThat would do nothing for liblzma as it was trusted.
minus-squareEmperorHenry@discuss.tchncs.delinkfedilinkarrow-up1arrow-down4·8 months agowho was it trusted by? There’s whitelisting applications that indiscriminately block everything that isn’t already installed too.
minus-squarePossibly linuxOPlinkfedilinkEnglisharrow-up8·edit-28 months agoThe developer of XZ. What your describing is package verification which already happens
That would do nothing for liblzma as it was trusted.
who was it trusted by? There’s whitelisting applications that indiscriminately block everything that isn’t already installed too.
The developer of XZ. What your describing is package verification which already happens