pull down to refresh

416 sats \ 5 replies \ @WeAreAllSatoshi 24 Mar 2023 \ on: GitHub.com posted their RSA SSH key for the world to see - BEWARE bitcoin

At least they updated the key within a few days? Still, that's pretty embarrassing to post their private key in a public repo

write
preview
122 sats \ 1 reply \ @ek 24 Mar 2023
This week, we discovered that GitHub.com’s RSA SSH private key was briefly exposed in a public GitHub repository.

They only said when they discovered the leak. Not when the leak started.

reply
0 sats \ 0 replies \ @WeAreAllSatoshi 24 Mar 2023

That is a great clarification!

reply
70 sats \ 2 replies \ @davidw OP 24 Mar 2023

GitHub is a humungous liability for the whole internet. Every project needs to now consider alternatives.

reply
50 sats \ 1 reply \ @deleted231216 24 Mar 2023

deleted by author

reply
0 sats \ 0 replies \ @ek 24 Mar 2023

I want to switch from gitolite to soft-serve in the near future.
Do you have any experience with it?

reply