GNU social JP
  • FAQ
  • Login
GNU social JPは日本のGNU socialサーバーです。
Usage/ToS/admin/test/Pleroma FE

  • Public

    • Public
    • Network
    • Groups
    • Featured
    • Popular
    • People

Conversation

Notices

  1. Embed this notice
    Rob Landley (landley@mstdn.jp)'s status on Sunday, 31-Mar-2024 08:10:56 JST Rob Landley Rob Landley

    Regarding the xz backdoor situation, here's what I wrote about in 2020 about coutering ken thompson's trusting trust attack by binary auditing from a small reproducible base:

    http://lists.landley.net/pipermail/toybox-landley.net/2020-July/011898.html

    This is not a one-time thing. We need auditable plumbing that can be cleaned regularly, like maid service. Binary re-auditing the common OS base from scratch should be a standard freshman project, and that base should be simple enough to allow that.

    https://landley.net/toybox

    In conversation about 8 months ago from mstdn.jp permalink
    • Embed this notice
      Rob Landley (landley@mstdn.jp)'s status on Sunday, 31-Mar-2024 08:11:38 JST Rob Landley Rob Landley
      in reply to

      (I have since been told that the movie "wargames" had the big theatrical display first, and NORAD built one years later to shut up high profile visitors who were disappointed by its absence. Which would explain why busybox was involved in it, despite the project not existing yet when the movie that created Reagan's cyber-security policy by making him aware that was a thing came out...)

      In conversation about 8 months ago permalink
      Haelwenn /элвэн/ :triskell: likes this.

Feeds

  • Activity Streams
  • RSS 2.0
  • Atom
  • Help
  • About
  • FAQ
  • TOS
  • Privacy
  • Source
  • Version
  • Contact

GNU social JP is a social network, courtesy of GNU social JP管理人. It runs on GNU social, version 2.0.2-dev, available under the GNU Affero General Public License.

Creative Commons Attribution 3.0 All GNU social JP content and data are available under the Creative Commons Attribution 3.0 license.