Hacker News
new
|
past
|
comments
|
ask
|
show
|
jobs
|
submit
login
0x0
17 days ago
|
parent
|
context
|
favorite
| on:
Copy Fail
Dropping a public exploit on github before distros have patches available isn't very cool, or is that just how veterans roll these days?
tptacek
17 days ago
|
next
[–]
There is no one accepted set of norms on disclosure. Any strategy you take, someone will criticize.
akerl_
17 days ago
|
prev
|
next
[–]
I don’t know if “cool” is the word I’d use, but there isn’t an established “right” way to disclose a vulnerability that you found outside of a contracted security review or other employment/contracting arrangement.
john_strinlai
17 days ago
|
prev
[–]
mainline was patched a month ago
Guidelines
|
FAQ
|
Lists
|
API
|
Security
|
Legal
|
Apply to YC
|
Contact
Search:
