Ubuntu 24.04 Beta Delayed Due To XZ Nightmare
Ubuntu 24.04 Beta Delayed Due To XZ Nightmare
7
comments
My $0.05 reading of it is that they want to hose down the build servers* and start clean, in case if the attacker escaped the sandboxing there.
* (the computers that compile all of the new packages from source, not web servers that are handing out finished deb binaries to the public.)
41 2 ReplyThey're rebuilding all the newer builds "out of an abundance of caution." The servers themselves obviously don't run on experimental software.
31 0 ReplyThis.
6 0 Reply
That would make sense if they ran servers on non-LTS release. Do they do that?
5 0 ReplyThey dont run experimental software on their build servers.
3 0 Reply
11 0 ReplyJust don't package it. And if you have to, sandbox it in Firejail or in Bubblewrap. Or just make Snap out of it.
2 6 Reply
You've viewed 7 comments.
Scroll to top