Reflecting on how the xz backdoor was uncovered because ssh was slow ...
How long would it have taken the ecosystem to notice an *aggregate* slowdown in SSH on eligible systems?
How do/can distros manage *end-to-end* testing - to compare performance/behavior to a baseline?
How can we automate additional anomaly detection (commits that contain obfuscation, graph of expected and unexpected component/package interaction, etc.)?
#xz #cve20243094
Royce Williams /
npub1d9…v7m3z
2024-03-29 20:51:16
Author Public Key
npub1d9j86kugzarj4skw6juglk2de6mful9svqu8yac6vum5wz5xtcwsyv7m3zPublished at
2024-03-29 20:51:16Event JSON
{
"id": "3230ec77103824f62adb1a3cf8107f123e05601a7c1b8d851036f4443618a5c6",
"pubkey": "69647d5b8817472ac2ced4b88fd94dceb69e7cb0603872771a6737470a865e1d",
"created_at": 1711745476,
"kind": 1,
"tags": [
[
"t",
"xz"
],
[
"t",
"cve20243094"
],
[
"proxy",
"https://infosec.exchange/users/tychotithonus/statuses/112180951548660268",
"activitypub"
],
[
"L",
"pink.momostr"
],
[
"l",
"pink.momostr.activitypub:https://infosec.exchange/users/tychotithonus/statuses/112180951548660268",
"pink.momostr"
]
],
"content": "Reflecting on how the xz backdoor was uncovered because ssh was slow ...\n\nHow long would it have taken the ecosystem to notice an *aggregate* slowdown in SSH on eligible systems?\n\nHow do/can distros manage *end-to-end* testing - to compare performance/behavior to a baseline?\n\nHow can we automate additional anomaly detection (commits that contain obfuscation, graph of expected and unexpected component/package interaction, etc.)?\n\n#xz #cve20243094",
"sig": "40b90884adab6d8a8017ad2413b5a2ee291ed33530a4b7a3ec6f80c5afb1a68e085cb58e8ce8bb6871bf182dc8f93636fdf3751d449ba4dca815314c196c2b2b"
}