You say yourself that the time data could be tampered. It's trivial to change co... | Hacker News

Hacker Newsnew | past | comments | ask | show | jobs | submit

		frenchman99 on March 30, 2024 \| parent \| context \| favorite \| on: Backdoor in upstream xz/liblzma leading to SSH ser... You say yourself that the time data could be tampered. It's trivial to change commit dates in git. So this analysis means nothing by itself, unfortunately.

mimop on March 30, 2024 [–]

I wouldn't say that. This guy seems to have tried hard to appear Chinese (and possibly tampered the time stamps this way) – but based on that analysis, it seems plausible they did a bad job and were actually based out of Eastern Europe.

Guidelines | FAQ | Lists | API | Security | Legal | Apply to YC | Contact