I feel like the fact that a handful of students could cause so much trouble kind of proves the point they were making
Ruining a good system to show that it could theoretically be ruined.
Compared to what a fully malicious group could have done, this is quite benign. They published the list of email addresses that they used to make the commits and announced what they’d done. They also weren’t trying to introduce any actual vulnerabilities. Even though I don’t agree with the way they did it (especially not telling anyone first), hopefully the fact that they managed to do this will act as a wake up call for the Linux kernel (and other open source projects).
Based on what I read, they tries to introduce vulnerabilities, but the code was accidentally correct. Which is quite funny.
Nobody listens otherwise. Source: I work in “enterprise” IT.
So were the students in question expelled or what?
deleted by creator
Doubtful, this research was at the direction of their advisor
Right, I forgot about that.
For instance this is the dark side of something being open source.
More specifically, the bazaar-style of development. Open source (or free software) is about the license the code is shared under, it has nothing to do with how it is developed.
This entire situatioun could perfectly be known as the students fiasco. Glad that it didn’t escalate more.
America being america, thanks for the work re-doing the shi*
