Re: Bounty: Consultation on DRAFT Infrastructure and Services Vulnerability Disclosure Statement

[Date Prev][Date Next][Thread Prev][Thread Next][Date Index][Thread Index]

To: "Livingood, Jason" <Jason_Livingood@xxxxxxxxxxx>, "ietf@xxxxxxxx" <ietf@xxxxxxxx>
Subject: Re: Bounty: Consultation on DRAFT Infrastructure and Services Vulnerability Disclosure Statement
From: "Salz, Rich" <rsalz=40akamai.com@xxxxxxxxxxxxxx>
Date: Thu, 6 Aug 2020 15:21:04 +0000
In-reply-to: <B8EC2B88-81B7-47F4-A9DF-34A49077857E@cable.comcast.com>
References: <B8EC2B88-81B7-47F4-A9DF-34A49077857E@cable.comcast.com>
User-agent: Microsoft-MacOutlook/16.39.20071300

    >    * Whether or not this statement should be supplemented with a "bug bounty" program.

In my experience (several years running openssl.org), bug bounties for websites are not worthwhile.

Follow-Ups:
- Re: Bounty: Consultation on DRAFT Infrastructure and Services Vulnerability Disclosure Statement
  - From: Rob Sayre
- Re: Bounty: Consultation on DRAFT Infrastructure and Services Vulnerability Disclosure Statement
  - From: John Levine

References:
- Re: Bounty: Consultation on DRAFT Infrastructure and Services Vulnerability Disclosure Statement
  - From: Livingood, Jason

Prev by Date: Re: Bounty: Consultation on DRAFT Infrastructure and Services Vulnerability Disclosure Statement
Next by Date: Re: Method of Contact - Consultation on DRAFT Infrastructure and Services Vulnerability Disclosure Statement
Previous by thread: Re: Bounty: Consultation on DRAFT Infrastructure and Services Vulnerability Disclosure Statement
Next by thread: Re: Bounty: Consultation on DRAFT Infrastructure and Services Vulnerability Disclosure Statement
Index(es):
- Date
- Thread

[Index of Archives] [IETF Annoucements] [IETF] [IP Storage] [Yosemite News] [Linux SCTP] [Linux Newbies] [Mhonarc] [Fedora Users]

Powered by Linux