trieulieuf9

Note : this is a journal. Me talks to myself. I think this is a good one, so I properly format it and post here. Yesterday, I spent around 7 minutes sky-gazing, I felt grounded, my mind is clear after that. Today, after I finish testing a small feature, I am about to switch to another feature. But I stop and brainstorm for 5 minutes for new ideas to test on this feature. And I indeed get some good ideas. I just realize that just a little bit of time spent consciously can make a noticeable impact. That's how generous life is to us. Life gives human 16 waking hours (960 minutes) everyday and we only need to spend 7 minutes to feel grounded, calm, clear. 30 minutes to exercise for a good health. And the rest is up to us to use. People who usually complain about not having enough time must have shove their heads in a lot of entertainment. Entertainment, on the other hand, is a counter-life activity. Because we usually spend a lot of time on it and feel foggy, lethargy afterward. We spe...

Three years ago, I started to find bugs more often. 95% of my bugs were low/medium. Although bounties were nice, I often wondered if my reports have any impact on the security of companies I submitted to. If my reports were useful to developers, security teams, or they were a waste of time, and bug bounty programs have to accept low/medium just to comply with bug bounty community standard, but what they really want are high/crit reports. I felt unease, while writing a new report for a low bug. I often thought If this report was really needed, or it was a waste of time for program staffs and everyone involved. Of course, the bounties were still larger than these doubts. So I reported. I tried to answer these doubts many times, some answers I had come up with are: Many of my low bugs are fixed, that means developers care about these bugs. Otherwise, they can just leave them in backlog for years. They have option to not pay for low bugs at all, but they pay, that means these reports have ...