Linux explores new way of authenticating developers and their code(www.zdnet.com)

26 pointsby CrankyBear14 hours ago1 comment

daymanstep6 hours ago
Sorry, but how would this have prevented the xz backdoor? The article seems to be insinuating that it would have, but I don't see how it could.
- lozf13 minutes ago
  > The article seems to be insinuating that it would have.
  I disagree, the article clearly states:
  Montgomery and others were careful to say that Linux ID will not magically prevent another xz‑style supply‑chain attack, but they argue it materially raises the cost.
- encrypted_bird4 hours ago
  xz backdoor? What's that?
  - lozf3 hours ago
    https://news.ycombinator.com/item?id=47166473
    - the video is well worth a watch.