Hacker News new | ask | show | jobs
by nix23 1792 days ago
Then check the binary before installation/tests if you have to, but not on the linux build server itself...that's ridiculous. A HIDS would be the the answer, so you can be ~sure that your tools are not altered to inject code into your compiled product.
1 comments
ASalazarMX 1791 days ago
I'm guessing they're covering the case where a feature or a vulnerability allows uploading Windows malware and exposing it with other users.
link