Let's not forget that kernel.org itself was hacked. Nor that Firefox et al updat... | Hacker News

Hacker News new | past | comments | ask | show | jobs | submit

login

gaius on June 4, 2012 | parent | context | favorite | on: The Microsoft Update mechanism has been used to sp...

Let's not forget that kernel.org itself was hacked. Nor that Firefox et al update themselves. People who live in glass houses...

exDM69 on June 5, 2012 [–]

This is why Linux kernel source code is also signed cryptographically and so is their git repository (all tags are signed). They also employ a PGP-style web of trust instead of an SSL-style centralized certificate management.

The chances of someone slipping in a backdoor in kernel releases are very slim.

Guidelines | FAQ | Lists | API | Security | Legal | Apply to YC | Contact