[Git][reproducible-builds/reproducible-website][master] 2 commits: 2019-08: Use new instead of fresh

Wed Sep 4 11:22:59 UTC 2019


Jelle van der Waa pushed to branch master at Reproducible Builds / reproducible-website


Commits:
e8d866af by Jelle van der Waa at 2019-09-04T11:21:14Z
2019-08: Use new instead of fresh

- - - - -
0289ab43 by Jelle van der Waa at 2019-09-04T11:22:33Z
2019-08: 2019 not 2009

- - - - -


1 changed file:

- _reports/2019-08.md


Changes:

=====================================
_reports/2019-08.md
=====================================
@@ -34,13 +34,13 @@ If you are interested in contributing to our project, please visit our [*Contrib
 
 A backdoor was found in [Webmin](http://www.webmin.com/exploit.html), the web-based application used by sysadmins to remotely manage Unix-based systems. Whilst more details can be found on [upstream's dedicated exploit page](http://www.webmin.com/exploit.html) it appears that the build toolchain was compromised. Note especially that the exploit "did not show up in any Git diffs" and thus would not have been found via an audit of the source code. The backdoor would allow a remote attacker to execute arbitrary commands with superuser privileges on the machine running Webmin. Once a machine is compromised, an attacker could then use it to launch attacks on other systems managed through Webmin or indeed any other connected system. Techniques such as reproducible builds can help detect exactly these kinds of attacks that can lay dormant for years. ([LWN comments](https://lwn.net/Articles/796951/))
 
-In a talk titled [*There and Back Again, Reproducibly!*](https://cfp.linuxdev-br.net/2019/talk/VH9CCY/), Holger Levsen and Vagrant Cascadian presented at the 2009 edition of the [Linux Developer Conference](https://linuxdev-br.net/) in São Paulo, Brazil on Reproducible Builds.
+In a talk titled [*There and Back Again, Reproducibly!*](https://cfp.linuxdev-br.net/2019/talk/VH9CCY/), Holger Levsen and Vagrant Cascadian presented at the 2019 edition of the [Linux Developer Conference](https://linuxdev-br.net/) in São Paulo, Brazil on Reproducible Builds.
 
 [LWN](https://lwn.net) posted and hosted an an interesting summary and discussion on [*Hardening the `file` utility for Debian*](https://lwn.net/Articles/796108). In July, Chris Lamb had cross-posted his reply to the "[Re: file(1) now with seccomp support enabled](https://lists.reproducible-builds.org/pipermail/rb-general/2019-July/001612.html) thread that was [originally started on the `debian-devel`](https://lists.debian.org/debian-devel/2019/07/msg00391.html) mailing list - in this post, Chris refers to our `strip-nondeterminism` tool not being able to accommodate the additional security hardening in [`file(1)`](http://darwinsys.com/file/) and the changes made to the tool in order to do fix this issue which was causing a huge number of regressions in [our testing framework](http://tests.reproducible-builds.org/).
 
 [![]({{ "/images/reports/2019-08/cccamp.png#right" | prepend: site.baseurl }})](https://events.ccc.de/camp/2019/)
 
-The Chaos Communication Camp — an international, five-day open-air event for hackers that provides a relaxed atmosphere for free exchange of technical, social, and political ideas — [hosted its 2019 edition](https://events.ccc.de/camp/2019/) where there were many discussions and meet-ups at least partly related to Reproducible Builds. This including the titular [Reproducible Builds Meetup](https://events.ccc.de/camp/2019/wiki/Session:Reproducible_Builds_Meetup) session which was attended by around twenty-five people where half of them were fresh to the project as well as [a session dedicated to all ArchLinux related issues](https://events.ccc.de/camp/2019/wiki/Session:Arch_Linux_Meetup).
+The Chaos Communication Camp — an international, five-day open-air event for hackers that provides a relaxed atmosphere for free exchange of technical, social, and political ideas — [hosted its 2019 edition](https://events.ccc.de/camp/2019/) where there were many discussions and meet-ups at least partly related to Reproducible Builds. This including the titular [Reproducible Builds Meetup](https://events.ccc.de/camp/2019/wiki/Session:Reproducible_Builds_Meetup) session which was attended by around twenty-five people where half of them were new to the project as well as [a session dedicated to all ArchLinux related issues](https://events.ccc.de/camp/2019/wiki/Session:Arch_Linux_Meetup).
 
 ---
 



View it on GitLab: https://salsa.debian.org/reproducible-builds/reproducible-website/compare/27e62dd69b93c3e117deecae7cf749cf5405c9fe...0289ab43edff31d56c3d069d65c1992c10160465

-- 
View it on GitLab: https://salsa.debian.org/reproducible-builds/reproducible-website/compare/27e62dd69b93c3e117deecae7cf749cf5405c9fe...0289ab43edff31d56c3d069d65c1992c10160465
You're receiving this email because of your account on salsa.debian.org.


-------------- next part --------------
An HTML attachment was scrubbed...
URL: <http://lists.reproducible-builds.org/pipermail/rb-commits/attachments/20190904/15948925/attachment.html>
