Skip to main content
Twice I've been contacted about security bad practices in #Friendica by people I couldn't find anything about on the Web. Their recommendations check out, but it always leaves me a weird feeling to exchange with practical ghosts, even well-meaning.
#friendica
lostinlight
lostinlight  
Is there a special Friendica email or "security.txt" information making it easy to contact Friendica devs... securely? P/s my humble dream is that Fediverse will have a croudfunded Bug bounty program some day. *That* would be fun
Roland Häder
Roland Häder  
And #gitea as a distributed bug reporting system, not #github from #Microsoft .
#microsoft #gitea #github
Roland Häder
Roland Häder  
Have you validated the claims? It could be scam!
silverwizard
silverwizard  
To be fair, security people are *like* that
Hypolite Petovan
Hypolite Petovan  
I know, it just is a little unsettling.
⇧