pull down to refresh
416 sats \ 5 replies \ @WeAreAllSatoshi 24 Mar 2023 \ on: GitHub.com posted their RSA SSH key for the world to see - BEWARE bitcoin
At least they updated the key within a few days? Still, that's pretty embarrassing to post their private key in a public repo
GitHub is a humungous liability for the whole internet. Every project needs to now consider alternatives.
reply
deleted by author
reply
I want to switch from gitolite to soft-serve in the near future.
Do you have any experience with it?
reply
This week, we discovered that GitHub.com’s RSA SSH private key was briefly exposed in a public GitHub repository.
They only said when they discovered the leak. Not when the leak started.
reply
That is a great clarification!
reply