Do you create #fediverse platforms?

Do you have any interest in testing your #IDN (Internationalized Domain Name) support?

If so, hit me up, I've got some really evil ones I can create subdomains on.

@icedquinn The reason for filing something with the SEC is because of potential impact to shareholders.

I have a few #infosec questions...

1) Under what circumstances are SEC filings required when a company is notified of a vulnerability?

2) What are the consequences of lying about the severity in such a report?

Asking for a friend. Who is me. In Minecraft.

Yuzu shuts down amid Nintendo lawsuit.

@icedquinn 🤷

I'm pretty torn on it, ethically, because of the stuff that can be obtained. Ultimately though, I think it would be better to publish one, since it should force them to actually fix it. I'm clearing it with some people first, but I'm thinking I'm going to do that later today or tomorrow.

It's now been one week and one of the court platforms in my recent disclosure[1] is still vulnerable to the issue that was reported to them by multiple state agencies over two months ago. They have not responded to my emails.

At what point does it become appropriate to publish a PoC? There's some Really Bad Shit™️ that can be obtained, so it's a tough position to be in.

[1] https://github.com/qwell/disorder-in-the-court

I, a high school dropout, am doing a Q&A at Stanford tomorrow. That's still blowing my mind a bit.

Hi Fediverse!

I'm just testing a punycode domain instance. You may safely ignore this message (I would be interested in seeing a screenshot of what this message looks like on the feed though, if some kind soul felt so obliged).

Link 1: https://ꩰ.com
Link 2: https://ꩰ.com/@north
Link 3: https://xn--8r9a.com
Link 4: https://xn--8r9a.com/@north

User 1: @north
User 2: @north@ꩰ.com
User 3: @north
User 4: @north@fosstodon.org