Hacker News new | ask | show | jobs
by Mashimo 780 days ago
If xz would have been hosted another place, what could have been prevented?
2 comments
croes 780 days ago
>The technical reason for not opting for such alternatives is that I will not be getting enough contributions there.

Yes.

Sudden interest from multiple people in certain pull request raise suspicions if you only have a contributions.

link
Mashimo 780 days ago
Sounds more like you get less eyes overall on your code. But the attacker will spend the same energy on it.
link
croes 779 days ago
But he can't hide in the masses
link
Mashimo 779 days ago
Yeah I don't buy it. He was more active than most even on github.
link
xandrius 780 days ago
That maybe fewer people would have even known about it and therefore decreased its importance as a target? /s
link