Backdoor: Difference between revisions

Line 16:

==Examples==

===Apple ~~backdoor~~ UK ~~lawsuit~~===

===Apple Backdoor UK Lawsuit===

*[[SecuRam installs backdoor on ProLogic series safe locks]]

===SecuRam Backdoor===

[[SecuRam installs backdoor on ProLogic series safe locks]]

===XZ Utils Backdoor===

The [[wikipedia:XZ_Utils_backdoor|XZ Utils backdoor]] was a code contribution to the XZ Utilities Linux system package that allowed remote code execution through a specific SSH key.<ref> https://gist.github.com/thesamesam/223949d5a074ebc3dce9ee78baad9e27</ref> This backdoor was significant as it went against the previously commonly held belief of open source software security through independent code auditing. The code contributor first had built trust with the maintainers by submitting legitimate code initially before implementing the backdoor in a subtle way through multiple layers to avoid suspicion. However this backdoor was discovered by Andres Freund.<ref> https://lwn.net/Articles/967180/</ref>

@@ Line 16: / Line 16: @@
 ==Examples==
-===Apple backdoor UK lawsuit===
+===Apple Backdoor UK Lawsuit===
-*[[SecuRam installs backdoor on ProLogic series safe locks]]
+===SecuRam Backdoor===
+[[SecuRam installs backdoor on ProLogic series safe locks]]
 ===XZ Utils Backdoor===
 The [[wikipedia:XZ_Utils_backdoor|XZ Utils backdoor]] was a code contribution to the XZ Utilities Linux system package that allowed remote code execution through a specific SSH key.<ref> https://gist.github.com/thesamesam/223949d5a074ebc3dce9ee78baad9e27</ref> This backdoor was significant as it went against the previously commonly held belief of open source software security through independent code auditing. The code contributor first had built trust with the maintainers by submitting legitimate code initially before implementing the backdoor in a subtle way through multiple layers to avoid suspicion. However this backdoor was discovered by Andres Freund.<ref> https://lwn.net/Articles/967180/</ref>