There is no zero day as far as we can tell. The limits are: - bgSync and other retry-inducing systems backoff exponentially & have caps on total runtime (and they appear to work) - push notifications have a limit to number of silent pushes (2, I think)
-
-
Replying to @slightlylate @ehsanakhgari
The paper is riddled with errors large and small. I think someone from our team requested corrections (but I'd need to double check).
1 reply 0 retweets 2 likes -
Replying to @ehsanakhgari
Lemmie quickly re-read some threads to make sure I'm not misremembering anything. One sec.
1 reply 0 retweets 0 likes -
Replying to @slightlylate @ehsanakhgari
Ok, so there was a thread where the authors cited an issue closed last summer: http://crbug.com/805496 That was a real lifetime bug.
1 reply 0 retweets 1 like -
Replying to @slightlylate @ehsanakhgari
The authors published a separate page clarifying that the issue was fixed last year: https://www.ics.forth.gr/dcs/index_main.php?l=e&c=735 … /cc
@wanderview@KenjiBaheux1 reply 0 retweets 0 likes -
Replying to @slightlylate @ehsanakhgari and
Their description of the situation is still not entirely technically accurate, but at least they published that update. Kudos to them for that. The NDSS page doesn't point to the update, and the submitted paper doesn't reference the bug.
1 reply 0 retweets 0 likes -
Replying to @slightlylate @ehsanakhgari and
Referenced slides include an update that notes the fix rolled out last year the end, so cheers to the authors for that.
1 reply 0 retweets 0 likes -
Replying to @slightlylate @ehsanakhgari and
It would be great if
@adriancolyer could also point readers at the author update page: https://www.ics.forth.gr/dcs/index_main.php?l=e&c=735 …1 reply 1 retweet 4 likes -
Replying to @slightlylate @ehsanakhgari and
Update suggests the exposure is now about one minute... not quite such the botnet after all in that case! I’ll add an update link to the post tomorrow...
1 reply 0 retweets 2 likes
Cheers!
Loading seems to be taking a while.
Twitter may be over capacity or experiencing a momentary hiccup. Try again or visit Twitter Status for more information.
& Web Standards TL; Blink API OWNER
Named PWAs w/
DMs open. Tweets my own; press@google.com for official comms.