Embed Notice

HTML Code

<blockquote style="position: relative; padding-left: 55px;"><section><a href="https://mastodon.social/users/vegard/statuses/112059158071266918">Vegard Nossum 🥑 (vegard@mastodon.social)'s status on Friday, 08-Mar-2024 21:40:41 JST</a><a href="https://mastodon.social/@vegard" title="vegard@mastodon.social"><img src="https://gnusocial.jp/avatar/25475-48-20230328130305.webp" width="48" height="48" alt="Vegard Nossum 🥑" style="position: absolute; left: 0; top: 0;">Vegard Nossum 🥑</a><div><a href="https://fosstodon.org/@kernellogger/112059063128975200" rel="in-reply-to">in reply to</a><ul><li><li><a href="https://gnusocial.jp/user/113726" title="ljs@social.kernel.org">Lorenzo Stoakes</a></li></ul></div></section><article><p><a href="https://fosstodon.org/@kernellogger">@kernellogger</a> <a href="https://social.kernel.org/users/ljs">@ljs</a> Two points here: 1) Yes, the bad guys are already doing this (sifting through changelogs and finding exploitable bugs), we should be doing it too, and 2) various companies and distros probably are probably already doing some parts of the work but it's done behind closed doors and we have no good mechanism for exchanging notes or collaborating at the scale necessary, so it ends up as duplicated for no good reason. I really do see an opportunity here for everybody to win</p></article><footer><a rel="bookmark" href="https://gnusocial.jp/conversation/2802642#notice-5558846">In conversation</a><time datetime="2024-03-08T21:40:41+09:00" title="Friday, 08-Mar-2024 21:40:41 JST">about a year ago</time> <span>from <span><a href="https://mastodon.social/@vegard/112059158071266918" rel="external" title="Sent from mastodon.social via ActivityPub">mastodon.social</a></span></span><a href="https://mastodon.social/@vegard/112059158071266918">permalink</a></footer></blockquote>

Corresponding Notice

Embed this notice
Vegard Nossum 🥑 (vegard@mastodon.social)'s status on Friday, 08-Mar-2024 21:40:41 JSTVegard Nossum 🥑
in reply to
- Thorsten Leemhuis (acct. 1/4)
- Lorenzo Stoakes
@kernellogger @ljs Two points here: 1) Yes, the bad guys are already doing this (sifting through changelogs and finding exploitable bugs), we should be doing it too, and 2) various companies and distros probably are probably already doing some parts of the work but it's done behind closed doors and we have no good mechanism for exchanging notes or collaborating at the scale necessary, so it ends up as duplicated for no good reason. I really do see an opportunity here for everybody to win
In conversationabout a year ago from mastodon.socialpermalink

Public

Embed Notice

HTML Code

Corresponding Notice