Public
- Public
- Network
- Groups
- Featured
- Popular
- People

Notices by Martin Ueding (martin_ueding@bonn.social)

Embed this notice
Martin Ueding (martin_ueding@bonn.social)'s status on Thursday, 16-May-2024 05:24:34 JST Martin Ueding
in reply to
- Paris Marx
@parismarx
I mean there is one additional step: Using all people's e-mails to train models …

In conversation about 6 months ago from bonn.social permalink
Embed this notice
Martin Ueding (martin_ueding@bonn.social)'s status on Monday, 01-Apr-2024 10:12:09 JST Martin Ueding
in reply to
@kirschwipfel @lispi314 @AndresFreundTec @glyph
Sounds good. But some projects have a build stage which generates lots of things. Packagers for distributions need to set up the needed environment and perform these steps. It seems much easier to use a provided artifact in these cases.
I think this attack is hard to defend against: An evil insider in the project with control over the code and artifacts. One could also hide malicious stuff in the code itself directly, in plain sight.

In conversation about 8 months ago from bonn.social permalink

User actions

Aktiv für Verkehrswende, Softwareentwickler, Radfahrer, Physiker, Blogger.

Tags

(None)

Following 0

Followers 0

Groups 0

Statistics

User ID: 133848

Member since: 3 Jun 2023

Notices: 2

Daily average: 0

Feeds

Atom