New version of SecureDrop, open-source whistleblower submission system originally created by Aaron Swartz


What’s the auditing and review process for this? And who decides who gets to push those security updates?

Automatic updates are a very important thing for zero-day exploits, but it also seems like a potential vector for exploitation if a compromised person or a virus is able to trigger the pushing of an update.

This topic was automatically closed after 5 days. New replies are no longer allowed.