|
|
|
|
|
|
by XMPPwocky
3627 days ago
|
|
|
What's your opinion on bug bounties for hosted applications v.s. bug bounties for actual pieces of software? To me, the latter seem like a much more obviously good idea than the former. Notably, issues of somebody going out of scope- like the Facebook issue a while back- mostly disappear. Bounties on things like Chrome seem to be almost drama-free; the worst possible case, aside from somebody 0-daying a bug out of anger, is somebody not getting paid. |
|
|