BugTraq
FYI: We're now paying up to $20,000 for web vulns in our services Apr 23 2012 07:05PM
Michal Zalewski (lcamtuf coredump cx) (1 replies)
RE: We're now paying up to $20,000 for web vulns in our services Apr 24 2012 02:07PM
Jim Harrison (Jim isatools org) (1 replies)
Re: We're now paying up to $20,000 for web vulns in our services Apr 24 2012 03:13PM
Michal Zalewski (lcamtuf coredump cx) (1 replies)
> IMHO, anyone who willingly, knowingly places customer data at risk by inviting attacks on their production systems is playing a very dangerous game. There is no guarantee that a vuln discovered by a truly honest researcher couldn't become a weapon for the dishonest "researcher" through secondary discovery

I'm not sure I follow. Are you saying that the dishonest researcher
will not try to find vulnerabilities if there is no reward program for
the honest ones?

/mz

[ reply ]
Re: [Full-disclosure] We're now paying up to $20, 000 for web vulns in our services Apr 24 2012 03:28PM
Charles Morris (cmorris cs odu edu) (1 replies)
Re: [Full-disclosure] We're now paying up to $20, 000 for web vulns in our services Apr 24 2012 03:44PM
Michal Zalewski (lcamtuf coredump cx)


 

Privacy Statement
Copyright 2010, SecurityFocus