this post was submitted on 04 May 2026
131 points (97.8% liked)
Technology
84359 readers
4375 users here now
This is a most excellent place for technology news and articles.
Our Rules
- Follow the lemmy.world rules.
- Only tech related news or articles.
- Be excellent to each other!
- Mod approved content bots can post up to 10 articles per day.
- Threads asking for personal tech support may be deleted.
- Politics threads may be removed.
- No memes allowed as posts, OK to post as comments.
- Only approved bots from the list below, this includes using AI responses and summaries. To ask if your bot can be added please contact a mod.
- Check for duplicates before posting, duplicates may be removed
- Accounts 7 days and younger will have their posts automatically removed.
Approved Bots
founded 2 years ago
MODERATORS
you are viewing a single comment's thread
view the rest of the comments
view the rest of the comments
In theory, the difference would be intent. If you proceed to inform others of the vulnerability or exploit it yourself to share secrets, the malicious intent is hard to deny.
If you just click around to see what the site has to offer, it becomes harder to prove. Some places have passed laws banning the mere accessing of content that should not be accessible, thereby putting the burden of proof on the defendant to show that they did not know the link would lead to confidential information, made no attempt to extract it, immediately withdrew upon realisation and so on.
On one hand, brief amd harmless access might not be worth legal action anyway, unless actual damage was done, so the expectation is probably that discretion in enforcement would moderate the heavy-handedness of the law. That isn't exactly unusual: It's easier to let something slide than to punish a transgression there is no law against.
One the other, trusting the fairness of that system might not be a good idea...