At least 10% of those who report security flaws to Mozilla turn down bug bounty

By on Aug 7, 2010 at 10:02 AM
General August 7, 2010

In mid-July, Mozilla announced that it was upping its “bug bounty” from $500 to $3,000 for every critical, reproducible security flaw reported. Today, MacWorld is reporting that, “Between 10 percent and 15 percent of the serious security bugs reported since Mozilla launched its bug bounty program have been provided free of charge.” Mozilla spokesperson Johnathan Nightingale said: “A lot of people would say, ‘Don’t worry about it. Donate it to the EFF or just send me a T-shirt.” Now that is the open source type spirt that just warms the cockles of your heart, isn’t it?

Read

Tags:
, , , , , ,
19 Comments

Related Articles

  • Mohammad

    Yes. I like mozilla better than IE.

  • Dilip andrade

    I have to admit that I’m surprised that the number is that low.

  • Nokia Guy

    Just wanted to say, in the last sentence you spelled “spirit” wrong. At least people have a heart and don’t accept the money.

    • eternally

      enough with the grammar nit-picking. fucking grow up.

  • Jose

    who ever feels they dont deserve the prize id gladly give you my address you can forward me the check ;]

  • http://cabinics.com David

    That makes me proud. I love FF. I’m glad there are still people out there that would rather it benefit someone else.

  • ken

    But I got bills to pay.

  • Nathan

    Heh. You said “cockles”.

  • b squared

    Well damn. Chances are theyre programmers themselves and already have enough money to blow.

  • Mark84790

    I still wonder what’s up with the redirect I get in Firefox where a Goggle search is redirected to Scour or Infomash. I doesn’t happen in Chrome. I even check IE to see if it happens there.

    • Varun

      it’s because your computer is probably loaded with malware and spyware. Run a Spybot clean and Ccleaner clean up.

  • http://www.helixzone.net helix2301

    The true geek will not take the money. They respect open source and want to help the open source community. Plus it’s fun to find holes in software. No to mention firefox is such a great browser why not try and make it better.

  • Common Sense

    There is nothing in this world I love more than open source … wait, there is one thing– and that thing is $500.

  • Jon

    Or more practically, they found the bug as part of their work, so their employer would get the cash anyway.

  • offday

    wow, 10-15%?? geeks always were my fav type of ppl..lol, i could really use that 3k tho!

  • http://www.civilprojectsonline.com/ Gauhar

    Awesome. People love Firefox so much… its true love. You can’t accept money to help someone you love…

  • Jim

    People shouldn’t give up the cash since, in essence, they are doing important work the company pays engineers very well for. Additionally, once a sufficient number of people keep working for free, the company will stop offering up the cash…

  • Smarmy

    Not to be a cynic, but they probably decline because they don’t want to provide their physical address (or other personal data) so they can receive the check, but still they could keep the whole thing to themselves so you have to respect their taking the trouble to report it.

  • jawman

    FF4L

blog comments powered by Disqus