|
|
|
|
|
|
by miloignis
985 days ago
|
|
|
The best defense against a trusting-trust-attack that I am aware of is Diverse Double-Compilation: https://dwheeler.com/trusting-trust/
It's a simple idea, but can be surprisingly tricky to get exactly the right.
Basically, you bootstrap from multiple disconnected and diverse systems and then do pairwise binary comparisons of the bootstrapped program on each of those systems. (This only matters after you've checked the source code itself for Trojans, though) |
|
|