Internet Archive's support email has now been compromised(lemmy.dbzer0.com)

posted 2 months ago

GatoEscobar@lemmy.dbzer0.com

piracy@lemmy.dbzer0.com

40 commentshide report

The FBI sleeps when libraries burn

Sort:

Hot Top Controversial New Old

You are viewing a single thread.

View all comments View context

[ - ]

Ashelyn@lemmy.blahaj.zone

4 points

2 months ago

90 days to cycle private tokens/keys?

permalink

report

parent

[ - ]

Zagorath@aussie.zone

8 points

2 months ago

90 days is just the standard timeframe for responsible disclosure. And normally that’s just a baseline with additional time being given if there’s genuine communication going on and signs they’re addressing the problem.

permalink

report

parent

[ - ]

ITGuyLevi@programming.dev

5 points

2 months ago

90 days is standard for “you’re code is fucked when someone presses this…”; if the issue is Dave left the keys in the parking lot and someone copied them, two weeks is more than enough time for them to recieve the notice, create a ticket to rotate the keys and a ticket to trigger an investigation (gotta document anytime an org fucks up so it doesn’t happen again, right?). Maybe I’m over simplifying it though, I don’t know how their org operates.

permalink

report

parent

[ - ]

Zagorath@aussie.zone

1 point

2 months ago

I agree in general, but