Brdsnest Lemmy
  • Communities
  • Create Post
  • Create Community
  • heart
    Support Lemmy
  • search
    Search
  • Login
  • Sign Up
Rustmilian@lemmy.world to Security@lemmy.mlEnglish · 2 years ago

Thoughts on the xz backdoor: an lzma-rs perspective | Blog

gendignoux.com

external-link
message-square
2
fedilink
7
external-link

Thoughts on the xz backdoor: an lzma-rs perspective | Blog

gendignoux.com

Rustmilian@lemmy.world to Security@lemmy.mlEnglish · 2 years ago
message-square
2
fedilink
Thoughts on the xz backdoor: an lzma-rs perspective | Blog | Guillaume Endignoux
gendignoux.com
external-link
Many discussions about open source dependencies and maintenance happened in the last month.Two posts caught my eye in the Rust ecosystem: Sudo-rs dependencies: when less is better about the Rust rewrite of sudo trimming its dependency graph, and On Tech Debt: My Rust Library is now a CDO about a Rust package being flagged as unmaintained, triggering complaints across downstream projects failing CI.And by now, you’ve likely heard about the backdoor in the xz-utils compression project.
alert-triangle
You must log in or register to comment.
  • lemmyreader@lemmy.ml
    link
    fedilink
    English
    arrow-up
    2
    ·
    2 years ago

    Interesting read. Thanks. The article mentions this https://research.swtch.com/nih which is worth reading as well.

    • Rustmilian@lemmy.worldOP
      link
      fedilink
      English
      arrow-up
      2
      ·
      2 years ago

      https://www.devever.net/~hl/bootstrapping-exam

Security@lemmy.ml

security@lemmy.ml

Subscribe from Remote Instance

Create a post
You are not logged in. However you can subscribe from another Fediverse account, for example Lemmy or Mastodon. To do this, paste the following into the search field of your instance: !security@lemmy.ml

Confidentiality Integrity Availability

Visibility: Public
globe

This community can be federated to other instances and be posted/commented in by their users.

  • 1 user / day
  • 24 users / week
  • 50 users / month
  • 405 users / 6 months
  • 1 local subscriber
  • 6.19K subscribers
  • 326 Posts
  • 420 Comments
  • Modlog
  • mods:
  • ghost_laptop@lemmy.ml
  • BE: 0.19.5
  • Modlog
  • Instances
  • Docs
  • Code
  • join-lemmy.org