jooonse.bsky.social
@jooonse.bsky.social
Reposted by jooonse.bsky.social
Pete Buttigieg breaks down DEI for everyday folks…
“The opposite of diversity is uniformity. The opposite of equity is inequity. The opposite of inclusion is exclusion.” @petebuttigieg.bsky.social
Our problem: too many value uniformity over inclusion and they’re the ones running the government.
🧵
“The opposite of diversity is uniformity. The opposite of equity is inequity. The opposite of inclusion is exclusion.” @petebuttigieg.bsky.social
Our problem: too many value uniformity over inclusion and they’re the ones running the government.
🧵
March 22, 2025 at 4:08 PM
Pete Buttigieg breaks down DEI for everyday folks…
“The opposite of diversity is uniformity. The opposite of equity is inequity. The opposite of inclusion is exclusion.” @petebuttigieg.bsky.social
Our problem: too many value uniformity over inclusion and they’re the ones running the government.
🧵
“The opposite of diversity is uniformity. The opposite of equity is inequity. The opposite of inclusion is exclusion.” @petebuttigieg.bsky.social
Our problem: too many value uniformity over inclusion and they’re the ones running the government.
🧵
Reposted by jooonse.bsky.social
This might be the best executed supply chain attack we've seen described in the open, and it's a nightmare scenario: malicious, competent, authorized upstream in a widely used library.
Looks like this got caught by chance. Wonder how long it would have taken otherwise.
Looks like this got caught by chance. Wonder how long it would have taken otherwise.
Woah. Backdoor in liblzma targeting ssh servers.
www.openwall.com/lists/oss-se...
It has everything: malicious upstream, masterful obfuscation, detection due to performance degradation, inclusion in OpenSSH via distro patches for systemd support…
Now I’m curious what it does in RSA_public_decrypt
www.openwall.com/lists/oss-se...
It has everything: malicious upstream, masterful obfuscation, detection due to performance degradation, inclusion in OpenSSH via distro patches for systemd support…
Now I’m curious what it does in RSA_public_decrypt
oss-security - backdoor in upstream xz/liblzma leading to ssh server compromise
www.openwall.com
March 29, 2024 at 7:29 PM
This might be the best executed supply chain attack we've seen described in the open, and it's a nightmare scenario: malicious, competent, authorized upstream in a widely used library.
Looks like this got caught by chance. Wonder how long it would have taken otherwise.
Looks like this got caught by chance. Wonder how long it would have taken otherwise.