Sam Bent1d ago

> builds a GRUB replacement in 2016
> spends 5 years breaking GRUB piece by piece
> strips LUKS encryption from /boot "for security"
> proposes to remove: btrfs, xfs, zfs
> keeps SquashFS, two CVEs, one rated 7.8 HIGH
> controls the signing keys for all of it
> Canonical promoted him.

https://www.sambent.com/canonicals-grub-saboteur-has-a-10-year-plan

Show threadBuntbart
@doingfedtime
Julian Klode is also Debian's Lead Maintainer of KeepassXC and apparently his decisions in this are also not without controversy, see:
https://heise.de/-9715863
Debian: KeePassXC-Paket verliert Funktionen, Umstieg zum Nachrüsten nötig

Der Maintainer des KeePassXC-Passwort-Managers bei Debian hat das Paket weitgehend entkernt. Ein alternatives Paket enthält alle Funktionen.

heise online
Mar 27 at 7:02amWeb
Show threadSam Bent18h ago
@oausi thank you for this I didn't know.
Show threadSneezy14h ago

@oausi @doingfedtime

adds more weight to my long standing advice:

don't trust password managers nor consumer VPNs

#vpn #passwordmanagers #tech #security #cybersecurity #opensource