<http://threatpost.com/en_us/blogs/microsoft-says-no-paying-bug-bounties-072210>
<quote>
Microsoft has no plans to follow in the footsteps of Mozilla and
Google and pay researchers cash rewards for the bugs that they find in
Microsoft's products.
In the wake of both Mozilla and Google significantly increasing their
bug bounties to the $3,000 range, there have been persistent rumors in
the security community that Microsoft soon would follow suit and start
paying bounties as well. However, a company official said on Thursday
that Microsoft was not interested in paying bounties.
</quote>
If they did it would bankrupt them unless they paid about $1 per
bug. :-)
|
|
0
|
|
|
|
Reply
|
 Hardon
|
7/23/2010 3:10:44 PM |
|
On 7/23/2010 11:10 AM, Hardon wrote:
> <http://threatpost.com/en_us/blogs/microsoft-says-no-paying-bug-bounties-072210>
>
> <quote>
> Microsoft has no plans to follow in the footsteps of Mozilla and
> Google and pay researchers cash rewards for the bugs that they find in
> Microsoft's products.
>
> In the wake of both Mozilla and Google significantly increasing their
> bug bounties to the $3,000 range, there have been persistent rumors in
> the security community that Microsoft soon would follow suit and start
> paying bounties as well. However, a company official said on Thursday
> that Microsoft was not interested in paying bounties.
> </quote>
>
> If they did it would bankrupt them unless they paid about $1 per
> bug. :-)
More than 600,000 Ubuntu bugs have been reported to launchpad.
At $3,000 each, that's $1.8 billion (less dupes, let's call it an even
billion).
MS could handle it easily. Linux freakazoids would have to get Mom to
mortgage her house.
"Whatever their problems is not the fault of Ubuntu"
|
|
|
0
|
|
|
|
Reply
|
DFS
|
7/23/2010 7:25:24 PM
|
|
On 2010-07-23, Hardon <hardon.quark@gmail.com> claimed:
><http://threatpost.com/en_us/blogs/microsoft-says-no-paying-bug-bounties-072210>
>
><quote>
> Microsoft has no plans to follow in the footsteps of Mozilla and
> Google and pay researchers cash rewards for the bugs that they find in
> Microsoft's products.
>
> In the wake of both Mozilla and Google significantly increasing their
> bug bounties to the $3,000 range, there have been persistent rumors in
> the security community that Microsoft soon would follow suit and start
> paying bounties as well. However, a company official said on Thursday
> that Microsoft was not interested in paying bounties.
></quote>
>
> If they did it would bankrupt them unless they paid about $1 per
> bug. :-)
Even that would bankrupt them unless they cut the timing of it off
after a week. That would probably be pushing it as well, but I think
they might be able to recover eventually.
--
UNIX is a computer virus with a user interface.
Aspire One, Linux Mint 9 (LXDE)
Friends don't let friends use Windows
|
|
|
0
|
|
|
|
Reply
|
Sinister
|
7/23/2010 7:37:00 PM
|
|
|
2 Replies
105 Views
(page loaded in 0.123 seconds)
Similiar Articles: DirectX in HLA - comp.lang.asm.x86... it's problematic so deserved a little "bug ... kind of expect, naturally enough...Microsoft thinks "cx" says ... you're compiling against > (yeah, Microsoft for you...no ... Linux exFAT/FAT64 support? - comp.os.linux.advocacy... http://en.wikipedia.org/wiki/ExFAT Note that "Microsoft ... Any non-trivial program contains at least one bug. ... and mostly unheard-of filesystem, then pay for a third ... Java Update Error - comp.lang.java.help... titled "Java(TM) Control Panel" which says "The ... No one calls it a bug that I know of. It's useful to note that ... or an OS problem > Clearly you're not paying ... keyboard/mouse programming - comp.lang.asm.x86If CMOS, this implies a software bug, like A20 being ... Their tabacco competitors have to pay even if they ... MicroSoft raised the costs of other DOSes effectively ... Wargame of the Year 2009 - Election - comp.sys.ibm.pc.games.war ...... OK, but now you will have to pay higher price ... icp$1@sunce.iskon.hr>, george.washington@microsoft.com says... ... Other than Fallout 3 and now Kings Bounty Armored ... improve strlen - comp.lang.asm.x86... these days are getting (Intel, GNU, > Microsoft ... is the corrected code.. regression tests pay off, noticed "slight" bug ... This says primarily 486 code but there is more ... Will the "real" REXX plesae stand up? - comp.lang.rexxwith no tail may represent either just the default ... One other thing: ooRexx can interact with all of Microsoft's ... This is the price I pay for taking four days off for my ... help with setting up NTP on windows with a USB GPS - comp ...http://msdn.microsoft.com/en-us/library/dd757624%28VS.85%29 ... > > > jack > > As Dave Hart says, you would need to do a ... If the customer wanted to pay for a new machine I ... [comp.publish.cdrom] CD-Recordable FAQ, Part 1/4 - comp.publish ...Archive-name: cdrom/cd-recordable/part1 Posting-Frequency: monthly Last-modified: 2008/10/09 Version: 2.71 Send corrections and updates to And... ntpd, boot time, and hot plugging - comp.protocols.time.ntp ...... in transactions during those seconds >> or with public utility that is paying the ... not be needed for this purpose, and if it was in your setup, maybe there is a bug ... Microsoft Says No To Paying Bug Bounties - SlashdotTrailrunner7 writes "In the wake of both Mozilla and Google significantly increasing their bug bounties to the $3,000 range, there have been persistent rumors in the ... Google boosts Web bug bounties to $20,000 - ComputerworldGoogle boosts Web bug bounties to $20,000 Increases payments ... The Vulnerability Reward Program (VRP) will now pay ... Gregg Keizer covers Microsoft, security issues, Apple, Web ... 7/3/2012 4:29:48 PM
|
Search |
Post Question |
Groups |
Stream |
About |
Register
6 followers. 