You don't have to say you are studying the security implications, you could be s... | Hacker News

Hacker Newsnew | past | comments | ask | show | jobs | submit

		Dobbs on April 21, 2021 \| parent \| context \| favorite \| on: “They introduce kernel bugs on purpose” You don't have to say you are studying the security implications, you could be say you are studying something else like turn around time for patches, or level of critique, or any number of things.

colechristensen on April 21, 2021 [–]

Yes you do. In no circumstances is it ethical to do penetrating tests without approval.

joshuamorton on April 21, 2021 | [–]

In the thread you're in, the assumption is that the patches are never actually submitted.

Guidelines | FAQ | Lists | API | Security | Legal | Apply to YC | Contact