• starmanOP
    link
    fedilink
    English
    arrow-up
    6
    arrow-down
    1
    ·
    edit-2
    9 months ago

    That’s true, but you have to know there was a backdoor first. If someone doesn’t know, and they use the latest version, they’re vulnerable to attack

        • λλλ
          link
          fedilink
          English
          arrow-up
          2
          ·
          9 months ago

          I believe the point they were making is that if you are techy enough to use nix, they are likely the type to keep up to date with news like this.

    • pbsds@lemmy.ml
      link
      fedilink
      English
      arrow-up
      4
      ·
      9 months ago

      If the issue had been critical, then the branch head could be rolled back, causing everyone to downgrade

      • Atemu@lemmy.ml
        link
        fedilink
        English
        arrow-up
        2
        ·
        edit-2
        9 months ago

        That’s a nice idea in theory but not possible in practice as the last Nixpkgs revision without a tainted version of xz is many months old. You’d trade one CVE for dozens of others.

    • GarlicToast
      link
      fedilink
      English
      arrow-up
      6
      arrow-down
      2
      ·
      9 months ago

      NixOS is aimed at highly technical people. You literally code your system structure.