Last week, I wrote about how Joshua Aaron's ICEBlock app, which allows people to anonymously report ICE sightings within a 5-mile radius, is – unfortunately, and despite apparent good intentions – activism theater. This was based on Joshua's talk at HOPE where he made it clear that he isn't taking the advice
what do you mean? that Micah should have tested the vulnerability, by hacking the server? that’s heavily illegal.
That’s usually how that works. You do a pen test and report vulnerabilities found and show a proof of concept of how you did it.
Just checking the version of Apache means absolutely nothing here and any security check that only does that is useless.
if the operator blocks you instead of giving a fuck, the consent for that cannot be obtained.
Defamation is also illegal, so what’s your point? That didn’t stop him from making claims about ICEBlock without any actual proof in his rush to disparage this guy and his app as people do when they have an axe to grind. He clearly “handled it in the worst possible way.”
if the iceblock dev weren’t such a douchebag, they wouldn’t be defamed. It’s not good if they didn’t update security critical software, but what’s much worse is how the dev handled it.