Posts in reflections
π¨ On the XZ Utils Backdoor (CVE-2024-3094): FOSS Delivered on its Pitfalls and Strengths
- 31 March 2024
The newly discovered backdoor[1] in the XZ Utils package[2] affecting numerous Linux distributions[3] and assigned CVE-2024-3094[4] is being dismissed by some members of the technology and security communities as yet another supply chain attack; relevant only because of how blatant it was and that it affected the Open Source ecosystem but in essence nothing out of the ordinary. Regardless of whether this perspective is gaining traction due to cynicism, as hyperbole for clicks or as a coping mechanism, I vehemently disagree with that stance.
Grieving the Early Internet πΎ
- 13 July 2023
This is a topic Iβve wanted to write about for a while; and one for which I had way too many references stored. Until now, I hadnβt found a way to jump-start my internal monologue on the matter and spur the necessary motivation to put my thoughts to paper. That, however, changed last week when I engaged in a couple of conversations online on HackerNews [1] and Tildes[2] about the openness and diversity of our present-day Internet.
