Also: please put your comments in the github because if we tried to use Twitter and HN as a project management tool it’s going to be excessively exciting.
-
-
There might be non-security benefits of reproducible builds to *vendors*, but I don't see any benefit to users of being able to reproduce them. This is just because promising there's no backdoors make no sense when bugdoors are just so perfect?
-
Fwiw I see benefits in reproducible builds to answer the question "is the binary on my machine built from this source"?
- 13 more replies
New conversation -
-
-
I think the general idea is reproducible builds reduce the set of backdooring vectors, but it doesn't remove all possible backdooring vectors as you've hinted. To remove all vectors requires multiple separate efforts.
Thanks. Twitter will use this to make your timeline better. UndoUndo
-
Loading seems to be taking a while.
Twitter may be over capacity or experiencing a momentary hiccup. Try again or visit Twitter Status for more information.

