 |
Post AvSxItugU6OgqjWCX2 by [email protected] |
 |
More posts by [email protected] |
|
Post #AvSogFy5kfA4KCArkO by [email protected] |
|
0 likes, 2 repeats |
|
|
|
Unpopular opinion: It is reasonable to describe random crap by volunteers with … |
|
|
|
Post #AvSogG4TMwGWdz9xh2 by [email protected] |
|
0 likes, 1 repeats |
|
|
|
@mcc This part!! |
|
|
|
Post #AvSpnd3oOSJdvQvfI8 by [email protected] |
|
0 likes, 1 repeats |
|
|
|
@mcc I know I’m the one who reboggled it but I’m not opposed to calling ran… |
|
|
|
Post #AvSx8utC08PAyr3llg by [email protected] |
|
0 likes, 0 repeats |
|
|
|
@mcc Yes, we absolutely consider that to be part of the supply chain. It's … |
|
|
|
Post #AvSxFLu2ThA2V1WZyy by [email protected] |
|
0 likes, 0 repeats |
|
|
|
@mcc right, like, it's not that it's unreasonable, it's that it gui… |
|
|
|
Post #AvSxFM047HyuniLONM by [email protected] |
|
0 likes, 0 repeats |
|
|
|
@mcc like, accepting the "supply chain" frame obscures more than it c… |
|
|
|
Post #AvSxFM7reIDhBtzcX2 by [email protected] |
|
0 likes, 0 repeats |
|
|
|
@ireneista @mcc from what I can tell looking at the SEC regs, it looks like if … |
|
|
|
Post #AvSxFMDtHt2ZUaoQvQ by [email protected] |
|
0 likes, 0 repeats |
|
|
|
@dmarti @mcc oh that's fascinating, for several reasons |
|
|
|
Post #AvSxItugU6OgqjWCX2 by [email protected] |
|
0 likes, 0 repeats |
|
|
|
@mcc |
|
|
|
Post #AvSxhcSKWlb9wj2hfc by [email protected] |
|
0 likes, 0 repeats |
|
|
|
@0xabad1dea @mcc this is why I have consistently found that the fastest way to … |
|
|
|
Post #AvSxyGvloKLO6skmps by [email protected] |
|
0 likes, 0 repeats |
|
|
|
@mcc if you're grabbing whatever crap has been tossed out on the sidewalk a… |
|
|
|
Post #AvSy2W5nNjdKI8T0TY by [email protected] |
|
0 likes, 0 repeats |
|
|
|
@mcc People are just skipping a couple steps and jumping to calling companies f… |
|
|
|
Post #AvTEsNpawOAKzidvc0 by [email protected] |
|
0 likes, 0 repeats |
|
|
|
@mcc What is this in reference to? |
|
|
|
Post #AvTEsNxOTOP7NuI9lg by [email protected] |
|
0 likes, 0 repeats |
|
|
|
@The4thCircle Companies use open-source software and then treat the authors as … |
|
|
|
Post #AvTEy4umBV3a40mYCG by [email protected] |
|
0 likes, 0 repeats |
|
|
|
@The4thCircle @mcc I'm assuming at least tangentially related to the libxml… |
|
|
|
Post #AvTEy519nmA2Nnle8u by [email protected] |
|
0 likes, 0 repeats |
|
|
|
@gbargoud @The4thCircle it was from observing this conversation, which I had a … |
|
|
|
Post #AvTFTrEkZdZcuRHJpo by [email protected] |
|
0 likes, 0 repeats |
|
|
|
@mcc People who think that exploitation and random junk aren't a "supp… |
|
|
|
Post #AvTFaBzQKPpN0i880W by [email protected] |
|
0 likes, 0 repeats |
|
|
|
Wait I think I withdraw my above statement because "demand chain" / &… |
|
|
|
Post #AvTFaC6Vu3UzMhRn3g by [email protected] |
|
0 likes, 0 repeats |
|
|
|
@mcc it also works really well at exposing the attack surface and whose fault i… |
|
|
|
Post #AvTFd7SPdVYxp25Koy by [email protected] |
|
0 likes, 0 repeats |
|
|
|
@mcc and the people making demands of that chain? We call them “chain yankers… |
|
|
|
Post #AvTFda3bIpwmWThQfo by [email protected] |
|
0 likes, 0 repeats |
|
|
|
@elrohir It's not like there are greater assurances provided if the code is… |
|
|
|
Post #AvTFda9yv73EqGgWcS by [email protected] |
|
0 likes, 0 repeats |
|
|
|
@mkj @elrohir when i pay someone money i expect i get assurances in return |
|
|
|
Post #AvTFqBMkPoJri1fFRo by [email protected] |
|
0 likes, 0 repeats |
|
|
|
@mcc Also love how "supply chain security" companies contribute exact… |
|
|
|
Post #AvTFt1FOUb0tCBZrQ8 by [email protected] |
|
0 likes, 0 repeats |
|
|
|
@mcc "software demand chain attack" also works well(it's a little… |
|
|
|
Post #AvTG46D0O0J1lik9Zo by [email protected] |
|
0 likes, 0 repeats |
|
|
|
@mcc software alms race |
|
|
|
Post #AvTG90qtjGqcbTkIxk by [email protected] |
|
0 likes, 0 repeats |
|
|
|
@mcc you get what you pay for, Supply Chain Edition! :blobcatfingerguns: |
|
|
|
Post #AvTGEkd2xbIU1c0GnY by [email protected] |
|
0 likes, 0 repeats |
|
|
|
@[email protected] But... they included free bedbugs! Usually you have to pay… |
|
|
|
Post #AvTk9a0g0jamGgVRzc by [email protected] |
|
0 likes, 0 repeats |
|
|
|
@The4thCircle (and maybe the triggering event today: over the weekend a few ban… |
|
|
|
Post #AvVMHtHuD88Bn3umwa by [email protected] |
|
0 likes, 0 repeats |
|
|
|
@mcc I dislike the presented dichotomy of "good proprietary code" and… |
|
|
|
Post #AvVMHtOzmlno93ERzk by [email protected] |
|
0 likes, 0 repeats |
|
|
|
@OmegaPolice I think that having a defined support contract with your software … |
|
|
|
Post #AvVMIIHPI7aRIksF8a by [email protected] |
|
0 likes, 0 repeats |
|
|
|
@mcc I don't see that happening for most of those one-person projects we ar… |
|
|
|
Post #AvhLQmt5bk9kUOVMrA by [email protected] |
|
0 likes, 0 repeats |
|
|
|
@mcc @mkj @elrohir Clearly that is not the industry norm these days... |
|
|
|
Post #AvhLQn1F7Qg6tgJsZ6 by [email protected] |
|
0 likes, 0 repeats |
|
|
|
@dalias @mcc @mkj @elrohir At least you have *some* influence on how much time … |
