ZARZA We are Zarza, the prestigious firm behind major projects in information technology.
Listen "Episode 436 - OpenSSH and node-ip - it's all exponential growth"
Episode Synopsis
Josh and Kurt talk about the recent OpenSSH vulnerability and the node-ip project owner taking their project private. They're quasi related in the context of two open source projects handled bugs very differently. The OpenSSH bug isn't really as serious as it seems, but you still want to patch. The node-ip bug is a very different story. The relationship between users and open source developers is one experiencing more strain now than we've ever seen. It's a weird conversation and we don't have good answers. Security in general is a collection of unsolvable problems. Show Notes Qualys security advisory Hacker News Discussion Security Cryptography Whatever Dev rejects CVE severity, makes his GitHub repo read-only
More episodes of the podcast Open Source Security
Iocaine poisons bots with Gergely Nagy
12/01/2026
Anubis with Xe Iaso
05/01/2026
Rustls with Dirkjan and Joe
29/12/2025
TARmageddon with Alex Zenla
01/12/2025
Python Security with Seth Larson
24/11/2025
In God we trust