Oddbean new post about | logout

Notes by Marnix | export

Max Hillebrand | 3 months ago (raw) | root | parent | reply | flag 
 The level of attack against freedom tech is escalating, brace yourself.

nostr:nevent1qqsqqqyr9kq...
Marnix | 3 months ago (raw) | root | parent | reply | flag 
 > They say a contributor key was compromised

This is an assumption:

A binary was replaced with a malicious one, this should only be possible to do by people with write access.
So far of those people, nobody's account seems compromised.

And GitHub doesn't let you know who performed that action.

> How many contributors can make releases?

The release itself, I think everyone could do it. But the creation and signing of the binaries with the zkSNACKs key of course only by people with the key.

> Is the installer not signed?

It is. And the signature file wasn't replaced. 
People who verify signatures should have noticed it and not be a victim
Marnix | 4 months ago (raw) | root | parent | reply | flag
Marnix | 4 months ago (raw) | root | parent | reply | flag 
 

nostr:nevent1qqsfryaf47y9app8g7gjcgjygy5llgfdkd3j9k65tp9cd9443jgh2vqpz3mhxue69uhkummnw3ezummcw3ezuer9wcpzpu22ckj4dtgn99rrv0pf68806rh2v490wka8fdl9ru7tecla6vxfqvzqqqqy9y086h8c
KevinR | 7 months ago (raw) | full thread | reply | flag 
 The Green Room 🔥
Marnix | 7 months ago (raw) | root | parent | reply | flag 
 The coinjoin room?
Vlad | 9 months ago (raw) | full thread | reply | flag 
 Rate my first pizza from 2024 🍕
Marnix | 9 months ago (raw) | root | parent | reply | flag 
 Gross😂
Marnix | 9 months ago (raw) | root | parent | reply | flag 
 Bearmarket isn't over until Vlad stops eating pizza multiple times a week