Wednesday, September 30, 2015

Whether You Want It To Or Not

from here

Vulnerability disclosure is a simple fact of life. It's going to happen.

  1. If you're a user, watch out for them because you may find yourself temporarily less safe. 
  2. If you're a vendor, keep your users in mind and respond to disclosures in good faith. 
  3. If your a researcher, put the users ahead of your own ego and work with the vendor in good faith. 
  4. If you're an attacker, fuck off and leave users' systems alone.