| Birdsite | @[email protected] |
| Infosec-adjacent | https://infosec.exchange/@Rairii |
If true, that means a news publisher got advanced notice, and not some operating systems vendors.
"Responsible disclosure" is anything but responsible.
^ personally, i am of the opinion that full disclosure best disclosure.
if bug bounties could give, instead of money or swag, useful knowledge, no matter how old (src, internal docs, build artifacts with private symbols, stuff like that which *should be* the currency of infosec); then i'd maybe reconsider. unfortunately that's not likely to happen in an era where such things are called Imaginary Property, given imaginary values, and hoarded instead of preserved.
"I heard Mastodon was failing."
Mastodon isn't focused on a profit motive. If your paradigm insists that anything that can't be monetized is a failure then sure, Mastodon willingly and cheerfully fails in your eyes.
Shawn Webb
Ellie
revenant