Stefan Tilkov · Apr 11, 2014 · 8:45 PM UTC

Stefan Tilkov @stilkov

11 Apr 2014

I don’t believe the Bloomberg story about the NSA having exploited Heartbleed for two years. Not even they would do that. Right? Right?!?

Fabian Steeg · Apr 12, 2014 · 2:44 AM UTC

Fabian Steeg @fsteeg

12 Apr 2014

@stilkov I don’t quite get the surprised reactions. Why would they not? Didn’t they even actively built weaknesses into specs?

Stefan Tilkov · Apr 12, 2014 · 7:20 AM UTC

Stefan Tilkov · Apr 12, 2014 · 7:20 AM UTC

Stefan Tilkov @stilkov

12 Apr 2014

Replying to @fsteeg

@fsteeg I think there’s a difference. Other vulnerabilities were pretty hard to exploit. This one’s trivial.

Apr 12, 2014 · 7:20 AM UTC

Fabian Steeg · Apr 12, 2014 · 1:43 PM UTC

Fabian Steeg @fsteeg

12 Apr 2014

Replying to @stilkov

@stilkov Yes, but that still assumes they are serving the general public’s good, when they are probably more like ‘the easier the merrier’

Stefan Tilkov · Apr 12, 2014 · 2:24 PM UTC

Stefan Tilkov @stilkov

12 Apr 2014

@fsteeg I almost wish it were true because I couldn’t see any way for them to justify it. I still don’t think it is.