Y
Hacker News
new
|
ask
|
show
|
jobs
by
mortehu
3743 days ago
I would say Debian is not vulnerable (to step 6), even for users of the rolling "unstable" release, since maintainers need to sign package uploads with their PGP key, which is usually protected by a separate password.