Hacker Newsnew | past | comments | ask | show | jobs | submitlogin

Huh. This is a huge security flaw and they decided to not patch it. Winning is patching this.

This is so disingenuous (from the first report of this flaw):

“Western Digital takes the security of our customers’ data seriously, and we provide security updates for our products to address issues from both external reports and regular security audits.”



> Huh. This is a huge security flaw and they decided to not patch it. Winning is patching this.

"Winning" isn't "gee if we could just say we'll patch every discontinued product forever and imagine it had no downsides wouldn't that be great" - that's known as "dreaming".


If a company releases an internet connected appliance, they need to support the software for at least the half-life of the underlying hardware.

Having a vendor support patch releases indefinitely would not be a huge burden for Western Digital.

In this case, it was obvious errors in their PHP application.




Guidelines | FAQ | Lists | API | Security | Legal | Apply to YC | Contact

Search: