Changelog News

Who in the world is Jia Tan?

Listen Later

The big story right now is the recently uncovered backdoor in liblzma (aka XZ) – a relatively obscure compression library that happens to be a dependency of OpenSSH.

This incident is noteworthy for so many reasons: the exploit itself, how it was deployed, how it was found, what it says about our industry & how the community reacted. Let’s dig in!

View the newsletter

Join the discussion

Changelog++ members support our work, get closer to the metal, and make the ads disappear. Join today!

Sponsors:

  • Sentry – AI-powered Autofix debugs & fixes your code in minutes. Give it a try… oh, and don’t forget to use code CHANGELOG when you sign up for Sentry to get $100 off their team plan. ✊
  • TailscaleAdam loves Tailscale! Tailscale is programmable networking software that’s private and secure by default. It’s the easiest way to connect devices and services to each other, wherever they are. Secure, remote access to production, databases, servers, kubernetes, and more. Try Tailscale for free for up to 100 devices and 3 users at changelog.com/tailscale, no credit card required.

    • Featuring:

    • Jerod Santo – Website, GitHub, LinkedIn, Mastodon, X

    ...more
    View all episodesView all episodes
    Download on the App Store
    Changelog NewsBy Changelog Media
    • 4.9
    • 4.9
    • 4.9
    • 4.9
    • 4.9

    4.9

    14 ratings

    More shows like Changelog News

    View all
    The Twenty Minute VC (20VC): Venture Capital | Startup Funding | The Pitch by Harry Stebbings

    The Twenty Minute VC (20VC): Venture Capital | Startup Funding | The Pitch

    536 Listeners

    The Changelog: Software Development, Open Source by Changelog Media

    The Changelog: Software Development, Open Source

    288 Listeners

    Data Skeptic by Kyle Polich

    Data Skeptic

    476 Listeners

    Software Engineering Daily by Software Engineering Daily

    Software Engineering Daily

    625 Listeners

    Talk Python To Me by Michael Kennedy

    Talk Python To Me

    581 Listeners

    Syntax - Tasty Web Development Treats by Wes Bos & Scott Tolinski - Full Stack JavaScript Web Developers

    Syntax - Tasty Web Development Treats

    988 Listeners

    REWORK by 37signals

    REWORK

    213 Listeners

    Trillions by Bloomberg

    Trillions

    196 Listeners

    CoRecursive: Coding Stories by Adam Gordon Bell - Software Developer

    CoRecursive: Coding Stories

    188 Listeners

    Practical AI by Practical AI LLC

    Practical AI

    200 Listeners

    The Stack Overflow Podcast by The Stack Overflow Podcast

    The Stack Overflow Podcast

    62 Listeners

    Dwarkesh Podcast by Dwarkesh Patel

    Dwarkesh Podcast

    533 Listeners

    Oxide and Friends by Oxide Computer Company

    Oxide and Friends

    67 Listeners

    The Pragmatic Engineer by Gergely Orosz

    The Pragmatic Engineer

    69 Listeners

    Changelog Interviews by Changelog Media

    Changelog Interviews

    5 Listeners