Belgium Is Unsafe for CVD

https://floort.net/posts/belgium-unsafe-for-cvd/

102•todsacerdoti•7mo ago

Comments

userbinator•7mo ago

it applies to me even if I am not a citizen of Belgium and don’t live in Belgium

Stay anonymous, look up extradition laws to be extra-safe.

cadamsdotcom•7mo ago

Sounds onerous & a fair bit of the requirements add nothing.

Laws on the books rarely change, plenty of places have silly leftovers like laws about where you can park your horse.

g-b-r•7mo ago

I guess that one of the takeaways is that Belgian systems and services are significantly more likely than average to have vulnerabilities, so you should stay away from them.

lesser-shadow•7mo ago

qrd: if Belgium gov gets hacked they fully deserve it

phkahler•7mo ago

Not sure why they author wants to tell the world xxx org had a business logic vulnerability and I found it. The rest was OK, but why the need to talk about that type of vulnerability? It's a one-off. Also, making the existence of it public might draw others to their site looking for more.

ben0x539•7mo ago

Many people like talking about what they do for work, or their hobbies.

Am4TIfIsER0ppos•7mo ago

> coordinated vulnerability disclosure

And I was thinking it was a disease.

Please don't help this country. It needs to fall apart.

cookiengineer•7mo ago

The Chaos Computer Club offers proxy services for vulnerability disclosures, as they also have a legal team that can help you. It's totally anonymous, create a shitty randomized protonmail or whatever for it and you're set.

I am never filing any vulnerability disclosure under my real name and neither my pseudonym. I've learned this lesson the hard way. Incompetence gets never punished, because intentions do not matter in front of the law - and especially not in front of a criminalizing-by-default law.

Only mad men file responsible disclosures under their real name and risk going to prison because of barbaric laws. Don't be that fool.

[1] https://www.ccc.de/disclosure

sam_lowry_•7mo ago

Check this out also: http://mikhailian.mova.org/node/295

CCB does some strange things indeed.

g-b-r•7mo ago

While the point that 2FA can also be a risk is fair, that article has some fairly horrible advice.

His long, unbreakable password that he only knows by heart can be leaked by any of the services he uses it for, if he uses it for more than one.

Weak password + name of the service is one of the first combinations tried by attackers.

Random complex password but relying on e-mail recovery for unimportant and rarely used services, instead, seems ok (but it takes very little to save a password in a password manager).

It's not a great look that his site doesn't support tls, by the way

TOSTracker – The AI Training Asymmetry

The Devil Inside GitHub

Show HN: Distill – Migrate LLM agents from expensive to cheap models

Show HN: Sigma Runtime – Maintaining 100% Fact Integrity over 120 LLM Cycles

Make a local open-source AI chatbot with access to Fedora documentation

Introduce the Vouch/Denouncement Contribution Model by Mitchellh

Software Factories and the Agentic Moment

The Neuroscience Behind Nutrition for Developers and Founders

Bang bang he murdered math {the musical } (2024)

A Night Without the Nerds – Claude Opus 4.6, Field-Tested

Could ionospheric disturbances influence earthquakes?

SpaceX's next astronaut launch for NASA is officially on for Feb. 11 as FAA clea

Show HN: One-click AI employee with its own cloud desktop

Show HN: Poddley – Search podcasts by who's speaking

Same Surface, Different Weight

The Rise of Spec Driven Development

The first good Raspberry Pi Laptop

Seas to Rise Around the World – But Not in Greenland

Will Future Generations Think We're Gross?

State Department will delete Xitter posts from before Trump returned to office

Show HN: Verifiable server roundtrip demo for a decision interruption system

Impl Rust – Avro IDL Tool in Rust via Antlr

Stories from 25 Years of Software Development

minikeyvalue

Neomacs: GPU-accelerated Emacs with inline video, WebKit, and terminal via wgpu

Show HN: Moli P2P – An ephemeral, serverless image gallery (Rust and WebRTC)

How I grow my X presence?

What's the cost of the most expensive Super Bowl ad slot?

What if you just did a startup instead?

Hacking up your own shell completion (2020)