Skip to content
Better HN
Top
Best
Ask
Show
New
Jobs
Search
⌘K
0 points
Hamuko
2y ago
0 comments
Save
Share
Didn't the xz situation kinda prove that even reading the script is probably not gonna do you a lot of good if you're up against someone smart?
0 comments
4 comments · 3 top-level
top
newest
oldest
wizzwizz4
2y ago
· 1 in thread
The xz situation proved the opposite: if you're up against someone smart, you won't read the script (and you'll
think
you have).
ta1243
2y ago
The xz situation proved that while you didn't read the script, someone did detect the problem. It shows the benefit of many-eyes.
1 more reply
xandrius
2y ago
Exactly, also if you already go thinking in adversarial terms when using something, why would you even use the thing to begin with?
Maybe I'm too naïve.
samtheprogram
2y ago
> given the xz situation a well crafted shell script can seem harmless while being very dangerous
That’s exactly what they are saying.
j
/
k
navigate · click thread line to collapse
