• troed@fedia.io
    link
    fedilink
    arrow-up
    3
    arrow-down
    1
    ·
    1 day ago

    You have absolutely no idea what “responsible” in “responsible disclosure” means :) It’s completely irrelevant how Mastodon has implemented private posts when it comes to how Dansup handled the issue, knowing what the effects were.

    You don’t, when told of a vulnerability, handle it in a way that cause harm if it can be avoided.

    • PhilipTheBucket@ponder.cat
      link
      fedilink
      English
      arrow-up
      2
      ·
      1 day ago

      Yeah, you said that stuff before and then you said it again. I do understand what your argument is here. I was trying a couple of different ways of explaining what I was saying in response, but it seems like it’s not working. Oh well.