Hacker Newsnew | past | comments | ask | show | jobs | submitlogin

Open source software will have a code repo with active development happening on it. That repo will usually link to official Web page and download places.
 help



The fork with malware embedded could fairly easily apply most commits to the main repo in its public repo.

They could even have support pages that look real, by copying them from the legitimate site.

And the process of creating a repo that stays in sync with another fork can be automated, so, if needed, malware writers likely will do that.

reply


Not universal true. Open source just means that the code is avaiable, not that developement happens in the open. (But 7zip does have a github repo)

reply




Guidelines | FAQ | Lists | API | Security | Legal | Apply to YC | Contact

Search: