Of course the ideal P0 disclosure policy is 180 days minus time to patch. 90 days without a patch, exploit gets dropped same as before. But if you patch in 10 days, you now get another 160 days before the exploit drops.

· tweetoot · 0 · 0 · 0
Sign in to participate in the conversation

The social network of the future: No ads, no corporate surveillance, ethical design, and decentralization! Own your data with Mastodon!