You are viewing a single comment's thread from:

RE: Gridcoin 2019 Budget -- Updated Draft Up for Peer Review

in #gridcoin6 years ago (edited)

For the Bug Bounties section:

A greater reward for a finding being fixed can be dangerous unless there's a specific goal in mind. If the goal is for the finding to be fixed ASAP, then researchers will be incentivized by either, helping to fix the issue, or simply pestering Devs to fix it. Worse, threatening to exploit or disclose in an unagreed upon manner sooner. Breakers are more often than you think, not builders, or visaversa. Hell, I can find SQLi like the best of em, but I am not intricately familiar with parameterization as a remediation method. If this seems nitpicky, it's because I've seen stuff happen man. I've seen things...

6 years ago in #gridcoin by
$0.03
  • Past Payouts $0.03, 0.00 TRX
  • - Author $0.02, 0.00 TRX
  • - Curators $0.01, 0.00 TRX
2 votes
Reply 1
Sort:  
  • Trending
    • [-]
     6 years ago 

    I can see your gaze into the distance at the end there.

    Definitely great info. How the bug bounties are built is important. This budget would just reserve some funds for the system built. I think we have some folks with experience in bug bounty programs willing to build everything out if we get funds for it.

    Coin Marketplace

    STEEM 0.28
    TRX 0.12
    JST 0.032
    BTC 60200.47
    ETH 3004.36
    USDT 1.00
    SBD 3.63