MozillaZine

Mozilla Security Bugs Bounty Program Launched

Monday August 2nd, 2004

The Mozilla Foundation has announced a Security Bug Bounty Program. Under the new scheme, any user who reports a critical security vulnerability in end-user Mozilla software will receive a US$500 reward. The program is being funded by Linux distributor Linspire (formerly Lindows.com) and Internet entrepreneur and space tourist Mark Shuttleworth. The Mozilla Security Bug Bounty page has more details, including the process for reporting vulnerabilities and under what circumstances a report is eligible (unfortunately for sloppy developers, you cannot claim a bounty for a bug in your own code!). Netscape has run a bug bounty program in the past, though this latest Mozilla initiative is unrelated.

In addition, the Mozilla Foundation has updated the Mozilla Security Center with tips for safe browsing and information about how Mozilla keeps you secure.

Update: The article has been rewritten to include additional information. Thanks to CoffeeBreaks for his contributions to this report.


#13 try this url (RE: you do the math)

by roseman

Wednesday August 11th, 2004 9:37 AM

You are replying to this message

<http://ars.userfriendly.org/cartoons/?id=20040811> --- i think this url will work directly -- MS somehow seems, smaller now :)