Ohhh now I see. DMCA violation, IOActive, Responsible Disclosure. - I should have stayed in bed.
@i0n1c no, Google still gives them a set time frame. no 'immediate' tripe here.
-
-
@attritionorg I meant IMMEDIATE disclosure of all bugs TO the vendor, not to the public.Thanks. Twitter will use this to make your timeline better. UndoUndo
-
-
-
@attritionorg Google is on the trip for a while to say that not disclosing (and merely sitting on bugs, not abusing) is unethical. -
@i0n1c sitting on bugs "too long" (which is the center of vuln disclosure debate) is wrong. -
@attritionorg I see. I do not subscribe to the church that knowning about a vuln makes me ethical obligated to report it. -
@i0n1c absolutely agree. if YOU know about a bug, you *have* to assume a dozen others do. else, you don't know your adversaries. -
@attritionorg yes and I think it is even worse. I know that there will be X other bugs (i don't know) and I know advers. will know them, too -
@i0n1c hah! i am only speaking to the bug YOU know about. we can't begin to guess about the 29384 other bugs known. -
@attritionorg yes I understand. Twitter is as usual too short for this kind of thing. -
@i0n1c yep. engaging IOA on this matter via G+ to get the rest of the story. =) time will tell..
End of conversation
New conversation -
Loading seems to be taking a while.
Twitter may be over capacity or experiencing a momentary hiccup. Try again or visit Twitter Status for more information.