Since firmware is supposed to be accessible to users worldwide, making it easier... | Hacker News

Hacker Newsnew | past | comments | ask | show | jobs | submit

		necovek 28 days ago \| parent \| context \| favorite \| on: TP-Link Tapo C200: Hardcoded Keys, Buffer Overflow... Since firmware is supposed to be accessible to users worldwide, making it easier to get it is good. But how is an open, read-only S3 bucket worse than a read-only HTTPS site hosting exactly the same data? The only thing I can see is that it is much easier to make it writeable by accident (for HTTPS web site or API, you need quite some implementation effort).

wkat4242 28 days ago [–]

No wait I agree with you. I think it is bad framing as "S3 open bucket" when people would totally understand an open website :)

Guidelines | FAQ | Lists | API | Security | Legal | Apply to YC | Contact