Ranter
Join devRant
Do all the things like
				++ or -- rants, post your own rants, comment on others' rants and build your customized dev avatar
				Sign Up
			Pipeless API
 
				From the creators of devRant, Pipeless lets you power real-time personalized recommendations and activity feeds using a simple API
				Learn More
			Comments
		- 
				
				 pain3175yWait... Do they sound like they don't want you to tell them their security vulnerabilities... pain3175yWait... Do they sound like they don't want you to tell them their security vulnerabilities...
 
 Like wtf? Shhhhh we don't want to hear how bad everything is
- 
				
				They should just not bother building in any security.
 
 People can't get around it if there is none ;)
- 
				
				Please be to not hacking us. It expensive to hide breach from regulators, many bribes.
- 
				
				@NoMad they don't. That's how dumb they are. At most they see that there's one Portuguese IP in the apache/nginx logs. Proves nothing.
- 
				
				 NoMad134245y@rodrigograca31 well, A. you used a static IP address. and B. They are recording IP addresses and associated activities. which I don't think is very legal under GDPR. NoMad134245y@rodrigograca31 well, A. you used a static IP address. and B. They are recording IP addresses and associated activities. which I don't think is very legal under GDPR.
 
 Also, this is why you should use tor for investigation.
- 
				
				 Mislead12535y@NoMad as long as you have a pupouse which is clearly stated, like preventing instrusion, its not at all illegal to store anything according to GDPR. Especially not an IP-address. Mislead12535y@NoMad as long as you have a pupouse which is clearly stated, like preventing instrusion, its not at all illegal to store anything according to GDPR. Especially not an IP-address.
- 
				
				 NoMad134245y@Mislead not just storing the IP address, but storing who uses which IP address, is misleading. He could literally email back and say "Hey, Sorry, that's not my IP address. I use a public network" and then see how much info they have actually stored of his activity by the response they give. Unless... He was logged in while trying to do his "investigation" in which case they have the right to tell him they basically don't want him to use their service a certain way... which is still a gray area because you should be able to use a service as you want, as long as you're not hurting anybody. Imagine if the company that makes your pen, say "no, you shouldn't write with it". NoMad134245y@Mislead not just storing the IP address, but storing who uses which IP address, is misleading. He could literally email back and say "Hey, Sorry, that's not my IP address. I use a public network" and then see how much info they have actually stored of his activity by the response they give. Unless... He was logged in while trying to do his "investigation" in which case they have the right to tell him they basically don't want him to use their service a certain way... which is still a gray area because you should be able to use a service as you want, as long as you're not hurting anybody. Imagine if the company that makes your pen, say "no, you shouldn't write with it".
Related Rants








 Ha good try
Ha good try
 I'll start implementing this in my apps too.
I'll start implementing this in my apps too.
Don't you love it when you take a look at a company frontend React code and GraphQL queries and they say you are hacking them? 🤔🤦🏻♂🤣
rant
webdev
hack
react
frontend
hacker