Hacker Newsnew | past | comments | ask | show | jobs | submitlogin

Hoe will you do that practically though? That’s probably thousands of commits upon which tens or hundred thousand commits from others were built. You can’t just rollback everything two years and expect it not to break or bring back older vulnerabilities that were patched in those commits.


Likely part of what the attacker(s) are counting on. Anyone want to place odds this isn't the only thing that's going to be found?


I’d bet you at even odds that nothing else malicious by this person is found in 1 month, and at 1:2.5 odds that nothing is found in a year.


Only if you consider "this person" to be equal to "this identity".




Guidelines | FAQ | Lists | API | Security | Legal | Apply to YC | Contact

Search: