So Epic release an installer for Fortnite outside of the play store, @TimSweeneyEpic bitches about the store the whole time, and when Google do Epic's job and find a security issue, wait for the patch to go out and then alert users to the issue, Tim whines even more about Google?
-
-
Google is very consistent in their vulnerability policy. See the project zero bug tracker for many examples of the 90 day deadline and T+7 day policies. This isn’t about Epic, they do the same to all vendors.
-
Is that practice sound though? With disclosure 7 days after patch issuance, it seems to me that vendors would have to run updates in the background and force-update all users to ensure that nobody is unpatched after 7 days. Maybe this is why Windows 10 updates are so pushy?
- 4 more replies
New conversation -
-
-
If it was really about open platforms you wouldn't even push to iOS though. You could have just stuck with the play store. You decided to make it about "open platforms" and Google still helped you out. Even if it is a good chance at publicity for them, they earned it.
Thanks. Twitter will use this to make your timeline better. UndoUndo
-
-
-
You got yourselves into this situation. You could have stuck with the fee to get benefits that Google-Play listed apps offer, such as automatic updating without the need to launch the game. A review system for reporting issues. Google Play protect. Etc. (1/2)
-
This was just greed from a company that has made a huge amount from the game already. Google helped show you a vulnerability that YOU caused. It was nice that they gave you 7 days. 90 days would just give mal-intented users a chance to abuse it. 7 days is ample warning. Not on.
End of conversation
New conversation -
-
-
Would this have been a problem if you were not greedy and just put it on the Play store? Play store default is to update automatically.
Thanks. Twitter will use this to make your timeline better. UndoUndo
-
-
-
Going via play store would have been even more safer. You are greedy. Happy to pay Apple (though they are richer) buy not Google? Why? Only coz
@Google is a nicer company?? They should have disclosed the bug immediately! You caused Android user unsafe for own financial gain!!Thanks. Twitter will use this to make your timeline better. UndoUndo
-
-
-
Eh, I'm having trouble seeing Google as the bad guy. You guys did the money grab, and you guys did a shiate job of replacing the security Google's platform provides. Own your choices.
Thanks. Twitter will use this to make your timeline better. UndoUndo
-
-
-
once the patch is available users can read the articles and then choose to install it instantly, instead of ignoring the update when not playing the game. I'm actually thankful, Google didn't approve the request, less people are vulnerable. And thank u for the awesome game!
Thanks. Twitter will use this to make your timeline better. UndoUndo
-
-
-
What about the "technical detail" of Epic making a decision to distribute outside of the Play Store, enabling the vulnerability to be successful? But NOW suddenly safety is important? Seems self-serving.
Thanks. Twitter will use this to make your timeline better. UndoUndo
-
Loading seems to be taking a while.
Twitter may be over capacity or experiencing a momentary hiccup. Try again or visit Twitter Status for more information.