Tits Matter More Than Exploits: WTF - Revealed Hack Made $5?? - Quick Read - 1 min #steemit
I'm sure this post will also be ignored
You really can't come up with this.
One of the best examples of this is:
I repeat:
At the moment, there is no incentive at the moment to reveal security exploits, and you would be better served selling the exploit on a zero-day exploit market for at least $10,000.
Or placing a short and revealing it to bitcoin magazines - and writing a clear medium post with source code so that someone can execute it.
Why is it that the only person who has worked on a ticketing system and a central information hub is @gabi-dumitriu?
And why is it that for his work, he only received $370 - for creating an entire steemit tailored social media site with integrated support ticketing system - in a post that was nested in an hour?
Why does it make sense to promote fluff content over security?
It doesn't.
Do you realise how much Facebook invests in security?
A lot more than on promoting Bitcoin strippers, marijuana and lolcats.
As it stands right now, we have no recourse to developers when we encounter issues, nor do we have recourse when we want to announce vulnerabilities.
With all the millions developers have made can they not invest in basic central support, or at least reward those who provide this infrastructure appropriately?
And actually promote the use of the infrastructure
Can they not have a full fledged bounty program so that people can expect appropriate reward when revealing exploits?
Case study (short):
Ethereum foundation made millions, no security audits, no full fledged bounty program.
Didn't @spaced get rewarded for his efforts on this post?
https://steemit.com/steem/@spaced/why-did-a-post-telling-people-to-report-bugs-make-3-000-usd-in-upvotes-and-my-actual-post-about-a-legitimate-security-issue-that
Looks like an incentive to me!
After having to complain.
If you think that's alright. then Ok.
I think it's unprofessional, and a pain in the ass.
More importantly, harder than getting paid for submitting an exploit in a zero day exploit market.
So I post an exploit then I have to complain my way to payment?
This is intellectually dishonest and solves nothing!
Stuffing a turd underneath a carpet doesn't remove the turd!
And plus you can still smell the shit...
it should not go in this way, but the past 2 weeks were really crazy for most of us here and also the devs. Also yea i'm not saying this as an excuse, i was also talking about this topic before. (Bug Bounties - highly rewarded - security audit funding etc.). Anyway many did notice the importance of funding and rewarding WH's for reporting flaws instead of misuse them. Still a long way to go … but i'm confident, we can get this all worked out …
…together
yea let'S learn on our mistakes and continue to mature this ecosystem and to enhance on all levels. SEC/UI/UX …
Well.... We can try and round up non voters and put them in camps to learn how to upvote better. But I doubt that will work.
I didn't even read what you wrote. I just like them airbags!
I made it to jigglypuffs and was like best post about pokemongo yet.
You can't knock someone for being a tit person and uninterested in the technical side of Steemit. this is fundamentally a social network platform, so it's kind of a given that there'll be a share of the cannabis, c-cup, cat lovers who are only really interested in coming together around those topics.
Don't get me wrong, I fully agree with you. But let's face it, people like those things and don't easily understand Steemit but are able to functionally use it, and are content with that.
I think those posters are important because it gives us an idea in the microcosm what the behaviors of Steemians will be in the macro full version.
I don't think the OP was having a go at ordinary steemers (who are dolphins and minnows) - of course they just vote for stuff they like or understand. He was making a point that all the $10k plus posts have whales including the developers voting them up (which is why they make so much). And those same people arn't voting security posts. It is a valid point.
Of course the whales may be not voting up security posts because they don't want to draw attention to them. But they could do an alternative method of payment, like simply transferring steem directly to whoever found the flaw.
Thanks, you understood it!
It most certainly a valid point, agreed. Somewhere in my Steem filled heart I gotta believe that, like you said, they aren't up voting security posts to avoid unwanted attention to holes they're working to plug up, but that they're also watching the boards to identify risks and concerns presented by Steemians. Probably a little romantic of me to think, but they seem so busy and invested And this thing keeps improving
"being a tit person and uninterested in the technical side of Steemit"
those who are both are the best ones. :3
true dat
But the masses aren't the one that affect rewards, whales do. And they should care
Golden words. but lets wait for alittle. and it will be better, i think.
This! Exactly what i was going to say.
came here to see boobs
see boobs - press upvote
sorry all
hahaha!
@positive, since this worked for you, allow me to report a #bug I experienced yesterday. Posted in a similar fashion with a boob gif.. :(
https://steemit.com/bug/@anduweb/bouncy-boobs-and-a-steemit-bug-reported-that-received-5-votes-bug
Tits theme wasn't been opened ))
hahaha
It's really the whales that need to upvote those posts... It them that stand to lose... lol
Yep, and that's what astounds me. I really do not understand the logic
at all
.Maybe whales will bait if you change the titties and post plankton pictures instead.
Upvoted for the tits, stayed for the comments. At the moment I'm not worried about security much because no whale has touched any of my posts. meaning I dont have much to show for the hours and HOURS of hard work. anyway Seriously, this post alone took me around 5 hours from concept to submit but without a whale clicking on it there remains nothing for me to SECURE.
https://steemit.com/money/@mguy808/eating-out-it-s-time-we-talk-about-restaurant-ettiquette
There is quality like this all over steemit that basically gets swept under the rug even though it is great for this platform. So, to prove a point I guess im spamming a bit. sorry not sorry. Hey, at least i contributed with a comment and an up vote :). Hope the Devs and Techs tighten this place up in case it does get as popular as facebook or reddit. Since it takes 100 hours to make a buck
Good post, i agree with the need of create a bounty program for finding bugs, really needed for a so big project like this, and nice gif.........
Bouncy bouncy bouncy.
Seriously, though. This is a serious topic. Important, and people need to know about it. Security is terribly underreported. How many people even know about zero-day exploit in Norton Antivirus? Sure, it was patched, but it's not like it went viral.
I've noticed that the most common posts on Steem that result in a lot of income are generally fake people posting introductions. It's pretty sad, but expected in a system where more money gives you more of a vote.