Skip to content
Better HN
Top
Best
Ask
Show
New
Jobs
Search
⌘K
0 points
tedunangst
8y ago
0 comments
Save
Share
It's not immediately clear, however, how one would conduct a cache timing attack against the package manager.
0 comments
2 comments · 1 top-level
top
newest
oldest
Sephr
8y ago
· 1 in thread
Through bad antivirus code that inadvertently runs your code in a sandbox. There have been multiple vulnerabilities like this recently.
tedunangst
OP
8y ago
Sounds like we should design our package managers so that they don't run hostile code in a sandbox.
j
/
k
navigate · click thread line to collapse
