I'm not taking it personally, I'm answering your question. What do you feel the correct distribution of effort is, literally everybody should be working on the worst problems facing mankind?
-
-
Replying to @chrisrohlf @halvarflake
So you agree it is appropriate to expend some effort on solving some of the problems facing mankind *other* than phishing? Clearly some very unpleasant people are using 0day exploits to commit horrible crimes, how many people should work on that?
0 replies 0 retweets 3 likes -
Replying to @chrisrohlf @halvarflake
I think this is a different than your relative privation argument, i.e. you said "explain how P0 adds value". You now agree P0 adds value, but argue working on phishing has more impact than working on exploitation. I can answer this too. 1/n
1 reply 0 retweets 2 likes -
I think you've fallen into the (appealing) trap of calculating impact based on number of affected users. This just doesn't work, a 0day exploit used *once* by an internal security agency to identify a journalists source and torture them affects only one user. 2/n
1 reply 0 retweets 4 likes -
Total affected users is 1, so is that less severe than 10k people downloading an infected warez copy of call of duty from some forum or some mass phishing email? It's easy to imagine more scenarios like this. 3/3
1 reply 0 retweets 4 likes -
This feels like the old "we shouldn't be investing in NSA when there is poverty" argument. P0 itself doesn't create massive change but the second order effects do
0 replies 0 retweets 2 likes
Firstly, those things have nothing to do with phishing? Chris's complaint is that phishing is more important than memory safety. Secondly, we have worked on and collaborated on many of those projects?
Loading seems to be taking a while.
Twitter may be over capacity or experiencing a momentary hiccup. Try again or visit Twitter Status for more information.