Player FM 앱으로 오프라인으로 전환하세요!
Who in the world is Jia Tan? (News)
Manage episode 410072937 series 1282967
The big story right now is the recently uncovered backdoor in liblzma (aka XZ) – a relatively obscure compression library that happens to be a dependency of OpenSSH.
This incident is noteworthy for so many reasons: the exploit itself, how it was deployed, how it was found, what it says about our industry & how the community reacted. Let’s dig in!
Changelog++ members support our work, get closer to the metal, and make the ads disappear. Join today!
Sponsors:
- Sentry – AI-powered Autofix debugs & fixes your code in minutes. Give it a try… oh, and don’t forget to use code
CHANGELOG
when you sign up for Sentry to get $100 off their team plan. ✊ - Tailscale – Adam loves Tailscale! Tailscale is programmable networking software that’s private and secure by default. It’s the easiest way to connect devices and services to each other, wherever they are. Secure, remote access to production, databases, servers, kubernetes, and more. Try Tailscale for free for up to 100 devices and 3 users at changelog.com/tailscale, no credit card required.
Featuring:
Show Notes:
All links mentioned in this episode of Changelog News (and more) are in its companion newsletter.
Something missing or broken? PRs welcome!
챕터
1. The intro (00:00:00)
2. The discovery (00:00:56)
3. The code (00:02:23)
4. The maintainer (00:03:08)
5. Sponsor: Sentry (00:03:44)
6. The attacker (00:04:45)
7. The pattern (00:06:04)
8. The debate (00:08:00)
9. The outro (00:09:27)
733 에피소드
Manage episode 410072937 series 1282967
The big story right now is the recently uncovered backdoor in liblzma (aka XZ) – a relatively obscure compression library that happens to be a dependency of OpenSSH.
This incident is noteworthy for so many reasons: the exploit itself, how it was deployed, how it was found, what it says about our industry & how the community reacted. Let’s dig in!
Changelog++ members support our work, get closer to the metal, and make the ads disappear. Join today!
Sponsors:
- Sentry – AI-powered Autofix debugs & fixes your code in minutes. Give it a try… oh, and don’t forget to use code
CHANGELOG
when you sign up for Sentry to get $100 off their team plan. ✊ - Tailscale – Adam loves Tailscale! Tailscale is programmable networking software that’s private and secure by default. It’s the easiest way to connect devices and services to each other, wherever they are. Secure, remote access to production, databases, servers, kubernetes, and more. Try Tailscale for free for up to 100 devices and 3 users at changelog.com/tailscale, no credit card required.
Featuring:
Show Notes:
All links mentioned in this episode of Changelog News (and more) are in its companion newsletter.
Something missing or broken? PRs welcome!
챕터
1. The intro (00:00:00)
2. The discovery (00:00:56)
3. The code (00:02:23)
4. The maintainer (00:03:08)
5. Sponsor: Sentry (00:03:44)
6. The attacker (00:04:45)
7. The pattern (00:06:04)
8. The debate (00:08:00)
9. The outro (00:09:27)
733 에피소드
Kaikki jaksot
×플레이어 FM에 오신것을 환영합니다!
플레이어 FM은 웹에서 고품질 팟캐스트를 검색하여 지금 바로 즐길 수 있도록 합니다. 최고의 팟캐스트 앱이며 Android, iPhone 및 웹에서도 작동합니다. 장치 간 구독 동기화를 위해 가입하세요.