Stephan Hegemann
Stephan Hegemann
I have just made a pull request that solves this.
Hello, I would be willing to add 500€ to the audit fund. The security audit for gocryptfs was done by Defuse Security (https://defuse.ca/software-security-auditing.htm) and it seems that they have experience...
Also, I do think a good time for the audit would be before Borg 2.0.0 stable is released, as it would be very difficult to make changes to the security...
@ThomasWaldmann I see you've added this to the 2.0.0 Milestone Is it ok for you if I put my 500€ in via Open Collective? (https://opencollective.com/borgbackup)
@ThomasWaldmann Yeah, I guess a better way would be setting up some kind of gofundme after getting a quote on how much money is needed. However, I didn't want to...
@ThomasWaldmann Alright, here it is, before I forget about this again: https://opencollective.com/borgbackup/contributions/865259 Don't worry, if there's no security audit in the end, just keep it. Borgbackup deserves it either way...
This issue is even more important than people commonly think. There will be a successor to JPEG, but JPEG-XL is the only candidate that allows a lossless transcoding from JPEG...
Well, 33 year old jpeg it is then for another year. 🤦