The Changelog: Software Development, Open Source

Who in the world is Jia Tan? (News)

Listen Later

The big story right now is the recently uncovered backdoor in liblzma (aka XZ) – a relatively obscure compression library that happens to be a dependency of OpenSSH.

This incident is noteworthy for so many reasons: the exploit itself, how it was deployed, how it was found, what it says about our industry & how the community reacted. Let’s dig in!

View the newsletter

Join the discussion

Changelog++ members support our work, get closer to the metal, and make the ads disappear. Join today!

Sponsors:

  • Sentry – AI-powered Autofix debugs & fixes your code in minutes. Give it a try… oh, and don’t forget to use code CHANGELOG when you sign up for Sentry to get $100 off their team plan. ✊
  • TailscaleAdam loves Tailscale! Tailscale is programmable networking software that’s private and secure by default. It’s the easiest way to connect devices and services to each other, wherever they are. Secure, remote access to production, databases, servers, kubernetes, and more. Try Tailscale for free for up to 100 devices and 3 users at changelog.com/tailscale, no credit card required.

    • Featuring:

    • Jerod Santo – Website, GitHub, LinkedIn, Mastodon, X

    ...more
    View all episodesView all episodes
    Download on the App Store
    The Changelog: Software Development, Open SourceBy Changelog Media
    • 4.7
    • 4.7
    • 4.7
    • 4.7
    • 4.7

    4.7

    286 ratings

    More shows like The Changelog: Software Development, Open Source

    View all
    Software Engineering Radio - the podcast for professional software developers by team@se-radio.net (SE-Radio Team)

    Software Engineering Radio - the podcast for professional software developers

    273 Listeners

    Software Engineering Daily by Software Engineering Daily

    Software Engineering Daily

    626 Listeners

    LINUX Unplugged by Jupiter Broadcasting

    LINUX Unplugged

    275 Listeners

    Talk Python To Me by Michael Kennedy

    Talk Python To Me

    583 Listeners

    Soft Skills Engineering by Jamison Dance and Dave Smith

    Soft Skills Engineering

    287 Listeners

    Data Engineering Podcast by Tobias Macey

    Data Engineering Podcast

    149 Listeners

    Syntax - Tasty Web Development Treats by Wes Bos & Scott Tolinski - Full Stack JavaScript Web Developers

    Syntax - Tasty Web Development Treats

    985 Listeners

    REWORK by 37signals

    REWORK

    212 Listeners

    Practical AI by Practical AI LLC

    Practical AI

    212 Listeners

    AWS Podcast by Amazon Web Services

    AWS Podcast

    204 Listeners

    The Stack Overflow Podcast by The Stack Overflow Podcast

    The Stack Overflow Podcast

    63 Listeners

    The Real Python Podcast by Real Python

    The Real Python Podcast

    140 Listeners

    Big Technology Podcast by Alex Kantrowitz

    Big Technology Podcast

    512 Listeners

    Training Data by Sequoia Capital

    Training Data

    39 Listeners

    The Pragmatic Engineer by Gergely Orosz

    The Pragmatic Engineer

    77 Listeners