Mastodawn

Yup.

In my experience, and opinion: any generalized ranked listing of bugs is counterproductive to security goals.

Any unexpected behaviour is a potential security bug, any unexpected behaviour that can be predicted and/or deliberately triggered is a potential notable security bug.

Determining any else requires a detailed assessment of the assumptions/ expectations of a specific system, and only once you do that, are you in a position to risk/prioritize any particular bug.

rrdot 6h ago

Show thread

Graham Sutherland / Polynomial 8h ago

I'm being hyperbolic here of course but like... surely all of us who have been in this industry longer than a few years are well aware that it's comparatively rare to find a straightforward normative security issue with no nuanced aspects whatsoever.

I don't know if there is any feasible way to design a single-metric distillation that can accomodate the median level of nuance required to realiably describe the overall importance of a security vulnerability. CVSS tries, but misses the mark.

rrdot 14h ago

snipe ⭑⭒⭒⭒⭒

23h ago

New from me! https://snipe.net/2025/06/24/welding-failure-and-self-sabotage/

Welding, Failure, and Self-Sabotage - Snipe.Net

I have a friend here in Portugal who is very interested in getting into infosec. He currently works at a quiosque here in Portugal that we really like (and sometimes work from), and he happened to see my “hacking is not a crime” sticker on my laptop so decided to start asking questions. We chat […]

Snipe.Net

rrdot 2d ago

Diligence Jones 2d ago

🧵THREAD: Why Are AI-Generated Black Women Selling War?

There’s a new kind of military propaganda happening—and it has a face.
Not a general. Not a flag.
A Black woman.
Digitally generated. Dressed in fatigues. Smiling, jubilant as she praises a U.S. airstrike against Iran.

Let’s talk about why that’s not progress. 👇🏾

rrdot Jun 16

Davey

Jun 16

pronouncing luncheon like it's an eveelution

rrdot Jun 16

A.R. Moxon, Verified Duck 🦆Jun 16

In the linked essay, I mention Nancy Mace's standard TERF question, asked most recently to Tim Walz: "What is a woman?"

My answer is simple. A woman is not a *what.* A woman is a *who.*

I want to expand a bit from the essay on why I think this matters.

https://www.the-reframe.com/shows-of-weakness/

Shows of Weakness

They've got the tanks. We've got the power.

The Reframe

rrdot Jun 15

Bob Jun 15

This parade could have been an email.

rrdot Jun 13

Kevin Neely

Jun 13

Due to the Republicans working to defund public broadcasting and media, John and Morgan over at #KEXP have decided to do a 27 hour marathon broadcast in which they urge listeners to contact their elected officals in support of public media and to fight against the bill. They're in hour 11 and going a bit crazy and its glorious. https://kexp.org #Music #NoRobots

KEXP - Where the Music Matters

KEXP is a nonprofit arts organization serving music lovers through in-person, broadcast and online programming.

rrdot Jun 12

Cory Doctorow Jun 12

A Mexican-American friend who lives here on a Green Card and is the mother of five US citizens, including a US Army Vet and an LAPD officer, just collapsed into my arms crying, saying that she no longer drives on the freeway because she's afraid of being stopped by ICE and kidnapped.

rrdot Jun 11

Molly White Jun 11

When we throw up our hands and say none of it matters, we're doing the fascists’ work for them. They don't need to hide their corruption if they can convince us it's pointless to look. They don't need to silence truth-tellers if we've already decided truth is meaningless.

https://www.citationneeded.news/it-matters-i-care/

It matters. I care.

Citation Needed

pronouns	he/him/they
radio station	kexp.org
chronic illness count	3, including t1d