Comment by vorpalhex

Comment by vorpalhex 3 hours ago

0 replies

View on Hacker News

Yes.

Most CERT requests are valid and good and should be obliged.. but there should be a manual check involved.

Especially when an appeal is filed. Especially when the content is obviously security reporting.

Both extremes are wrong - don't ignore CERTs and don't mindlessly oblige them. Find one of the many reasonable middlegrounds.