Skip Navigation

Anti-Corporate Movement @lemmy.giftedmc.com

haui @lemmy.giftedmc.com

5d ago

Proprietary vs Open Source Backdoors

cross-posted from: https://lemy.lol/post/45980344

linuxmemes @lemmy.world

icegladiator @lemy.lol

5d ago

Proprietary vs Open Source Backdoors

You're viewing a single thread.

9 comments

I feel like the latter really happened. That sounds too specific to be made up.
- You would be correct:
  https://www.runtime.news/how-a-500ms-delay-exposed-a-nightmare-scenario-for-the-software-supply-chain/
  
  This story does make me worried though, that this is the case where they were caught, and there are many more where they weren’t caught.
  
  I'm more worried about the top case, honestly. That probably happens way more often and found out less often because the stuff isn't opensource.
  
  We had this discussion in another thread. This was a most likely state sponsored action with huge time investment. It was also highly complicated because it is nearly impossible to hide this stuff due to the number of eyes on the code. Of course it is possible, but its not feasible to assume its somehow massive.

9 comments