1) Expose vulnerability 2) Don't give the whole world tools to exploit it 3) Give the vendor a chance to fix it before bad guys use it
-
-
Is that what you think happened here? Gilles, before u make horrible accusations against strangers on the internet, maybe do some research?
1 reply 0 retweets 8 likes -
Before you make horrible assumptions... Sure. :)
1 reply 0 retweets 0 likes -
What assumptions am I making? You listed what you thought happened, and you're completely incorrect. Tell me where the danger is.
1 reply 0 retweets 5 likes -
You are screaming at a stranger that they're putting people in danger. You better have a cogent case to back that up, don't you think? Geez.
1 reply 0 retweets 6 likes -
I don't recall screaming. Nor using all caps to indicate such.
1 reply 0 retweets 0 likes -
So what about that danger Gilles, or are we going to switch to discussing diction after you just dropped a baseless accusation on me?
1 reply 0 retweets 1 like -
I'm all in favor of disclosing vulnerabilities... But there's a nice way to do it... and a not so nice way. Responsibility is high.
2 replies 0 retweets 1 like -
Gilles, focus. You said people are in danger, that sounds urgent. Let's hear it.
3 replies 1 retweet 13 likes -
If you want to complain about whether stating the truism, "software has bugs" is nice or not, it can wait until the danger has passed.
1 reply 2 retweets 10 likes
Silence? OK, but you at least have a persuasive argument for why "bugs exist in software" should qualify as vulnerability disclosure, right?
-
-
Here is one for you, "it is well known that ignorance is bliss, so saying that software isn't perfect unfairly deprives people of bliss".
1 reply 0 retweets 11 likes -
Syllogisms don't make an argument. Though they are fun to read.
1 reply 0 retweets 0 likes - 12 more replies
New conversation -
Loading seems to be taking a while.
Twitter may be over capacity or experiencing a momentary hiccup. Try again or visit Twitter Status for more information.