Will confirms all X.509 validation broken, not just code signing. Okay, I'm back on the hype train, that's pretty bad.https://twitter.com/wdormann/status/1217144867173912582 …
-
Any thoughts on why Microsoft rates it as important and not critical.
It seems consistent with their scale, it means https is broken, not iis remote shell. Still, if you can't make exceptions for things like this, then maybe the scale is broken.
-
-
Why does this seem exception worthy though? What qualities of this vuln make it riskier than other "severe" vulns that have similar likelihood x impact qualities? I think the NSA being associated with this vuln dropping is artificially hyping it up, beyond its real risk
-
Because https is kind of important?
- Još 2 druga odgovora
Novi razgovor -
Čini se da učitavanje traje već neko vrijeme.
Twitter je možda preopterećen ili ima kratkotrajnih poteškoća u radu. Pokušajte ponovno ili potražite dodatne informacije u odjeljku Status Twittera.