That is TERRIBLE advice. I don't know exactly what you mean by 'friendly hacking... | Hacker News

Hacker News new | past | comments | ask | show | jobs | submit

login

inchcombec on March 30, 2012 | parent | context | favorite | on: #1 CSRF Is A Vulnerability In All Browsers

That is TERRIBLE advice. I don't know exactly what you mean by 'friendly hacking' but ANY exploitation of a website vulnerability without that site's permission would be a crime pretty much anywhere; even if it isn't malicious. It would be far from the first time that an administrator or owner didn't understand that the person was trying to help or just didn't really want to deal with it and it then just ended up being an issue of the vulnerability discoverer vs. law enforcement. Never a fun situation even if you win.

redthrowaway on March 30, 2012 [–]

Not much different from the recent Github hack, really.

flurdy on March 30, 2012 | [–]

Same guy :)

Guidelines | FAQ | Lists | API | Security | Legal | Apply to YC | Contact