Hacker News new | past | comments | ask | show | jobs | submit login

Well, (a) he's not suggesting that, and (b) even if he were, it doesn't seem like a huge deal.

If an attacker has access to Hubot, then they already have access to everything the Hubot server can do.




If they can TALK to hubot. So whatever the security is on campfire, or whatever it is.


Campfire's a webapp, so presumably https.




Consider applying for YC's W25 batch! Applications are open till Nov 12.

Guidelines | FAQ | Lists | API | Security | Legal | Apply to YC | Contact

Search: