(reason: 550 5.4.1 [security@lastpass.com]: Recipient address rejected: Access denied) 
-
-
What are your terms/time frame when reporting something privately?
-
No terms or obligations. It's like saying you're going to make a truthful, verifiable and reproducible claim about a product, but willing to give the vendor a short window to make changes first if they wish to do so. No requirement to act if they don't want to or don't care.
- 2 more replies
New conversation -
-
-
Completely agree. Anther way bug bounty platforms are inappropriately skewing vuln disclosure norms toward NON disclosure or FULL disclosure, away from private disclosure with reasonable time frames. There's a misunderstanding about researchers who simply want bugs fixed.
-
You are my muse.
- 1 more reply
New conversation -
Loading seems to be taking a while.
Twitter may be over capacity or experiencing a momentary hiccup. Try again or visit Twitter Status for more information.
