Hacker News new | past | comments | ask | show | jobs | submit login

Getting specific consent from the project leads is entirely doable, and would have avoided most of the concerns.



It really wouldn't have and would've made the patches not pass all levels of review.


How do you think social engineering audits work? You first coordinate with the top layer (in private, of course) and only after getting their agreement do you start your tests. This isn't any different.


> You first coordinate with the top layer (in private, of course) and only after getting their agreement do you start your tests.

The highest level is what had to be tested as well, or do you imagine only consulting Linus? Do you think that wouldn't've gotten him lynched?




Guidelines | FAQ | Lists | API | Security | Legal | Apply to YC | Contact

Search: