[ home / rules / faq ] [ overboard / sfw / alt ] [ leftypol / siberia / hobby / tech / edu / games / anime / music / draw / AKM ] [ meta / roulette ] [ cytube / wiki / git ] [ GET / ref / marx / booru / zine ]

/tech/ - Technology

"Technology reveals the active relation of man to nature" - Karl Marx
Name
Options
Subject
Comment
Flag
File
Embed
Password (For file deletion.)
Join our Matrix Chat <=> IRC: #leftypol on Rizon
[ Return / Go to bottom ]

File: 1711833746313-0.jpg (109.89 KB, 1080x389, back.jpg)

File: 1711833746313-1.png (53.79 KB, 1047x547, 1711756998309801.png)

 No.23977

>Researchers have found a malicious backdoor in a compression tool that made its way into widely used Linux distributions, including those from Red Hat and Debian.

>The compression utility, known as xz Utils, introduced the malicious code in versions ​​5.6.0 and 5.6.1, according to Andres Freund, the developer who discovered it. There are no known reports of those versions being incorporated into any production releases for major Linux distributions, but both Red Hat and Debian reported that recently published beta releases used at least one of the backdoored versions—specifically, in Fedora Rawhide and Debian testing, unstable and experimental distributions. A stable release of Arch Linux is also affected. That distribution, however, isn't used in production systems.

https://arstechnica.com/security/2024/03/backdoor-found-in-widely-used-linux-utility-breaks-encrypted-ssh-connections/

Real shit or is this an attempt by Yank glowies to delegitimize Free Software and fire up the techno-cold war?

 No.23978

File: 1711833956766.jpg (277.74 KB, 1021x981, ukr.jpg)

Speculations oscillating between blame and china and glow-op.

 No.23979

>>23978
it's always a fucking glow op, shit like linux relies on good faith and common purpose but there's a dwindling supply of that.

 No.23980

let the FBI cucks spy on me. it'll be a waste of their time

 No.23981

File: 1711836365564.gif (37.38 KB, 220x391, funny-chad.gif)

Installing Windows rn

 No.23982

>>23978
>the analysis of his git commit timestamps
LMFAO, those are so fucking trivial to fake, the faking is built into git itself. There's a git command argument to supply a custom timestamp for a commit, I've done this myself.

Glowies (or anyone else) will try to mask their operations by even including foreign language in their code, even if it serves no technical purpose. It's just there to give false leads.

I'm pretty certain the author of those commits is NOT from the timezone of those commits. If they are competent enough to develop a backdoor then they sure as fuck will have the absolute basic knowledge about hiding their traces.

 No.23983

>>23982
>There's a git command argument to supply a custom timestamp for a commit, I've done this myself.
ah yes, the old "make my work shift longer than it actually was" trick

 No.23984

Debian stable chads stay winning

 No.23985

File: 1711837389660.jpg (132.67 KB, 1000x1414, debian-stable.jpg)

>>23984

 No.23986

>>23984
>>23985
it's not old, it's stable!

 No.23987

>>23982
Hear is the thing, the developer had a Chinese sounding name but a timestamp that aligns with Eastern europe/Israel.

So which of these things is fake and which is genuine and whatever is fake, what was the intention behind the obfuscation?

 No.23988

>>23987

You can't tell who it is, it could be Five Eyes trying to frame Chinese / Russians, Russians trying to frame Chinese, or Chinese trying to frame Russians, or Russians / Chinese trying to frame Five Eyes trying to frame Chinese / Russians.

It's no point; vs spooks it's very hard to figure out who did what unless they were sloppy.

 No.23989

>>23988
I mean that's the thing though, this was a sloppy job. They didn't even benchmark it, which was how it got found out like imediately.

Also what's the point in having 2 threads about this? The /tech/ thread has already covered a lot of bases ya'll're being slow getting to.

 No.23990

>>23988
Exactly, but cui bono? Who benefits from the delegitimization of free and open software? Chinas or American companies? In the West are currently in the midst hot debate about Chinese-made software and tech companies.

 No.23991

>>23989
damn didn't check the /tech/ thread

sorry mods, please nuke if I was naughty.


Unique IPs: 7
[Return][Go to top] [Catalog] | [Home][Post a Reply]
Delete Post [ ]
[ home / rules / faq ] [ overboard / sfw / alt ] [ leftypol / siberia / hobby / tech / edu / games / anime / music / draw / AKM ] [ meta / roulette ] [ cytube / wiki / git ] [ GET / ref / marx / booru / zine ]
[ Return / Go to top /