Possibly linux@lemmy.zip to Linux@lemmy.mlEnglish · 8 months agoXZ backdoor in a nutshelllemmy.zipimagemessage-square162fedilinkarrow-up11.22Karrow-down110
arrow-up11.21Karrow-down1imageXZ backdoor in a nutshelllemmy.zipPossibly linux@lemmy.zip to Linux@lemmy.mlEnglish · 8 months agomessage-square162fedilink
minus-squarePossibly linux@lemmy.zipOPlinkfedilinkEnglisharrow-up7·8 months agoThat would do nothing for liblzma as it was trusted.
minus-squareEmperorHenry@discuss.tchncs.delinkfedilinkarrow-up1arrow-down4·8 months agowho was it trusted by? There’s whitelisting applications that indiscriminately block everything that isn’t already installed too.
minus-squarePossibly linux@lemmy.zipOPlinkfedilinkEnglisharrow-up8·edit-28 months agoThe developer of XZ. What your describing is package verification which already happens
That would do nothing for liblzma as it was trusted.
who was it trusted by? There’s whitelisting applications that indiscriminately block everything that isn’t already installed too.
The developer of XZ. What your describing is package verification which already happens