dammIT

A rantbox

#security Articles


OpenSSL gave everyone alarm fatigue

I'm worried that this is going to be seen as a reason to not take "CRITICAL" disclosures seriously at first glance like we should. A "CRITICAL" bug MUST be treated as if it was critically bad. From a community health perspective, people have been told that something really bad is …