Something I’m not clear on on the xz backdoor issue: People are saying the big scary vulnerability is through sshd. So for say my home desktop that does not have port 22 exposed to the public that part is probably not going to be an issue, right? I understand that there is a general issue with xz and things that use it too (and I’ve updated and Manjaro do seem to have pushed out updated package for xz) but the most pressing concern involving an open vulnerability isn’t that scary unless youy have a public ssh server running, right?
I mean I do also have some servers running with ssh access but I checked and they are all at least not on the versions of xz people are saying are affected.








