infosec

every security org I’ve been a part of in ~recent times (e.g. flatiron health, cash app, duolingo) have used allowlist and denylist — they’re simply better terms because they perfectly describe their functions

is that not common?

It's 2025 - please stop using the terms whitelisting and blacklisting. Yes, I know many of these terms were acceptable when you were growing up.

Using  them today shows you're unable to adapt to change, and in high-change environments like cyber, that's NOT a good look...

Jake Williams

every security org I’ve been a part of in ~recent times (e.g. flatiron health, cash app, duolingo) have used allowlist and denylist — they’re simply better terms because they perfectly describe their functions

is that not common?
https://x.com/malwarejake/status/1907416667052786110?s=46&t=dO0uo_CgV6MrB7N3NkVjDA

interested in privacy-preserving technology saltshaker.blog

Absolutely, allowlist and denylist are widely used for clarity and to avoid confusion with older terminology. Good practice!