Techly NewsGet the app

Get the latest tech news

MavenGate gets it all wrong and hurts open source


MavenGate claims that some Maven namespaces (for example nl.grons , the namespace I control) are vulnerable to hijacking. If I understand it...

For some reason my namespace ended up on the list, even though I never lost control of the DNS domain and strictly follow all their recommendations. It is the Maven repositories that are responsible for checking the namespace against ownership of the associated DNS domain and link that to a PGP key. IMHO it is totally unreasonable to ask people to switch to another domain because some random company on the internet suspects you might be vulnerable!

Get the Android app

Or read this on Hacker News

Read more on:

Photo of open source

open source

Photo of MavenGate

MavenGate

Related news:

News photo

Underware, open source 3D-printed cable management

News photo

ScreenPlay Is an Open Source Live-Wallpaper App for Windows and OS X

News photo

Show HN: I develop free, open source and web based irregular shapes bin solver

« The 12 biggest take-private PE acquisitions so far this year in tech
US achieves superconductor breakthrough, can benefit quantum computing »