Nostr Web Client

the globalists were a hairs breadth away from gaining access to servers running Debian and Red Hat based distributions all over the world.

Reply to this note

Please Login to reply.

Discussion

cuban 1y ago

and if it wasn't for a performance obsessed fella out there they would have gotten away with it

but also, yeah that's bad

atyh 1y ago

They have a goal. That’s what im realizing

Hazey 1y ago

Can you please elaborate what this is about?

cuban 1y ago

there was someone who noticed that software he used to loging was taking like a half a second longer then normal. He reported it and it turned out someone had snuck malware into the test version of a commonly used debian package...

Hazey 1y ago

Ah right the xz utils

atyh 1y ago

Code fragments were snuck into multiple testing branches. The commit to production brought them all together. But the xz library was chosen specifically because of its potential to spread the exploit to ssh, and 80% of the servers in the world.

But one dude who spends all his time in front of a screen noticed a subtle delay…

That’s an Easter gift as far as I’m concerned.

cuban 1y ago

Ooo, didn't realize it hadn't gotten that spread

The Bird 1y ago

What is an xz library?

Hazey 1y ago

Data compression software used by different packages including ssh

The Bird 1y ago

Thank you. I'm learning more about this because I have absolutely no clue.

nicnym 1y ago

Autism is on our side

Ruminant Llama 1y ago

In other words. Know your systems. Attention to detail is key

atyh 1y ago

You could have known your system backwards and forwards and you would have had your ass handed to you.

This save was a gift.

The Bird 1y ago

What is Debian and red hat?

🄷🄸🄶🄷●🅂🄲🄾🅁🄴 1y ago

Linux operating systems

(a lot of cloud infrastructure runs on Linux so we assume this attack wasn't targeting the tiny percentage of people who run Linux on their laptop...)

The Bird 1y ago

Ahh thanks. This is going to be an interesting thread to keep reading