My idea of getting one step ahead of similar backdoors is to wrap sshd traffic i... | Hacker News

Hacker Newsnew | past | comments | ask | show | jobs | submit

		mkup on April 13, 2024 \| parent \| context \| favorite \| on: XZ backdoor story – Initial analysis My idea of getting one step ahead of similar backdoors is to wrap sshd traffic into a spiped tunnel. Spiped is compiled from source and linked statically (last stable version from 2021).

markhahn on April 13, 2024 | [–]

jeez, why not just compile ssh static?

mkup on April 13, 2024 | | [–]

I still want sshd updated by my OS package manager. Statically linked spiped, which is out of scope of my OS package manager, is just a second line of defense.

cpach on April 13, 2024 | [–]

spiped is solid. Wireguard is another good option that is included in the Linux kernel.

Guidelines | FAQ | Lists | API | Security | Legal | Apply to YC | Contact