Hacker News new | comments | ask | show | jobs | submit login

Hard to call this “privilege escalation” if I’m reading this correctly?

It’s like a firewall default policy of ALLOW and complaining that packets are getting through.

There was a literal “Skip” button on the login page and the default account was granted permission to read certificate private keys. Did I get that right?

Applications are open for YC Summer 2019

Guidelines | FAQ | Support | API | Security | Lists | Bookmarklet | Legal | Apply to YC | Contact