Well, that was a breeze. I’ve now registered my username here as @sroussey.com. I knew I’d eventually find a reason to own that domain.
December 31, 2024 at 6:19 PM
Well, that was a breeze. I’ve now registered my username here as @sroussey.com. I knew I’d eventually find a reason to own that domain.
Reposted by Steven Roussey
It’s so nice to be at the stage of a lifetime of a platform when everyone mostly agrees the people running it are working hard and doing a good job. Let’s enjoy that while we can!
November 26, 2024 at 3:08 PM
It’s so nice to be at the stage of a lifetime of a platform when everyone mostly agrees the people running it are working hard and doing a good job. Let’s enjoy that while we can!
Reposted by Steven Roussey
This might be the best executed supply chain attack we've seen described in the open, and it's a nightmare scenario: malicious, competent, authorized upstream in a widely used library.
Looks like this got caught by chance. Wonder how long it would have taken otherwise.
Looks like this got caught by chance. Wonder how long it would have taken otherwise.
Woah. Backdoor in liblzma targeting ssh servers.
www.openwall.com/lists/oss-se...
It has everything: malicious upstream, masterful obfuscation, detection due to performance degradation, inclusion in OpenSSH via distro patches for systemd support…
Now I’m curious what it does in RSA_public_decrypt
www.openwall.com/lists/oss-se...
It has everything: malicious upstream, masterful obfuscation, detection due to performance degradation, inclusion in OpenSSH via distro patches for systemd support…
Now I’m curious what it does in RSA_public_decrypt
oss-security - backdoor in upstream xz/liblzma leading to ssh server compromise
www.openwall.com
March 29, 2024 at 7:29 PM
This might be the best executed supply chain attack we've seen described in the open, and it's a nightmare scenario: malicious, competent, authorized upstream in a widely used library.
Looks like this got caught by chance. Wonder how long it would have taken otherwise.
Looks like this got caught by chance. Wonder how long it would have taken otherwise.
Nice view from my home of a few days last month in NYC.
April 30, 2023 at 1:35 AM
Nice view from my home of a few days last month in NYC.
