I wonder if this increases the value of patch diffing results. Because P0 will not disclose what the bugs are for a long time which automatically makes patch diffing more attractive
https://twitter.com/i0n1c/status/1214621661099646989 …
That makes sense of you're concerned about opportunistic, spray all over the internet type attacks. There are other types of attack, where observability doesn't exist, yet people really really want to imply their data points are relevant. They're not.
-
-
Stated goal of this policy is to allow for wider patch adoption so if I’m taking a position it’s in that context of wide targeting. It’s unfair to talk about both opportunistic and targeted scenarios simultaneously. Anyway, I implied /someone else’s/ data point was relevant :p
-
Yeah this whole falls down because people don’t patch if they don’t know what exactly the danger is.
End of conversation
New conversation -
Loading seems to be taking a while.
Twitter may be over capacity or experiencing a momentary hiccup. Try again or visit Twitter Status for more information.
