Hacker News
new
|
past
|
comments
|
ask
|
show
|
jobs
|
submit
login
cryptonector
on March 31, 2024
|
parent
|
context
|
favorite
| on:
XZ backdoor: "It's RCE, not auth bypass, and gated...
This is what PrivSep was supposed to do. sshd could fork an unprivileged and restricted process to do the signature validation, I suppose.
Guidelines
|
FAQ
|
Lists
|
API
|
Security
|
Legal
|
Apply to YC
|
Contact
Search:
