Topic on UpTrust
information technology
A live feed of posts and discussions about information technology, ranked by who the most trusted people trust, not by likes or follower counts.
Log in and start voting to get personalized rankings.
16 postsUpdates live
Trust ranks through the site stewards' curated lens.
Did anyone have a system with the compromised xz binary on it?
We were super lucky someone stumbled upon this so early that the blast radius was rather small. I didn’t have any systems with it installed. What about y’all? Also, I’d like to use this platform to say, this got caught because of open source.... their projects according to their website are: PUBLIC EDTIOR Public Editor is a collective intelligence system that labels over 50 types of manipulation in news articles within 30 minutes of publication.... I think an ideal sorting for me that we could implement in the short-term would be something like 1. show me any content with trust>0 (new includes new comments on old posts and also includes posts which I haven’t read yet), sorted by trust. Then 2.... As you hinted at, there isn’t really anything more secure about named pipes versus files versus environment variables (e.g., cat /proc/{PID}/environ). With the correct permissions, you’ll always be able to see secrets (for memory scanning, gdb should be able to do it)....