It is a tragedy that there aren't 50 Tavises IMO. If there was 0.1 Tavis per $bn in revenue in orgs that ship recklessly unaudited and ...
-
-
Replying to @halvarflake @AlecMuffett
... overprivileged default-on code, the world would be a much better place. Not sure why anyone should be obliged to not say that they ...
1 reply 1 retweet 26 likes -
-
Replying to @halvarflake
Same reason folk don't post "I've been invited to Johnny's Surprise Birthday Party!" on Twitter. Some events deserve mutual coordination.
4 replies 1 retweet 9 likes -
Replying to @AlecMuffett @halvarflake
Public disclosure is great. I have literal decades of experience advocating for it. But being a dick about it… is unhelpful.
3 replies 0 retweets 8 likes -
Replying to @AlecMuffett
"Being a dick" is your judgement. Can you name a scenario where saying "I found a critical bug in Windows" causes harm?
2 replies 0 retweets 27 likes -
Replying to @halvarflake @AlecMuffett
I keep hearing intelligent people implying that
@taviso saying he found a vuln in X causes harm. What am I missing?4 replies 1 retweet 24 likes -
Replying to @mkolsek @halvarflake and
IMO, one could argue that the louder the disclosure is the better for the user (on the long run). Companies invest in security to avoid...
1 reply 0 retweets 0 likes -
... reputational damage. If vulns cause that it is more likely they will be fixed in the future.
1 reply 0 retweets 0 likes -
I am very glad that you have an opinion on that. It's important that people have opinions.
1 reply 0 retweets 0 likes
Unless we don't like those opinions, then we must destroy and censor the blasphemers.
-
-
Or, ignore them.
0 replies 0 retweets 0 likesThanks. Twitter will use this to make your timeline better. UndoUndo
-
Loading seems to be taking a while.
Twitter may be over capacity or experiencing a momentary hiccup. Try again or visit Twitter Status for more information.