Whether or not a default configuration is vulnerable is a pretty typical compone... | Hacker News

Hacker Newsnew | past | comments | ask | show | jobs | submit

		tmp538394722 on April 3, 2021 \| parent \| context \| favorite \| on: Man who thought opening a TXT file is fine thought... Whether or not a default configuration is vulnerable is a pretty typical component of accessing a vulnerability’s severity. Unfortunate that the author didn’t mention this. Obviously this doesn’t excuse the bug, but it’s important to contextualize if we hope to compare relative impact and have frank discussions.

comex on April 3, 2021 [–]

The default configuration was, in fact, vulnerable at the time. Having it be commented out by default is new.

saagarjha on April 3, 2021 | [–]

The vulnerability: https://www.fcvl.net/vulnerabilities/macosx-gatekeeper-bypas...

Guidelines | FAQ | Lists | API | Security | Legal | Apply to YC | Contact