| lists.openwall.net | lists / announce owl-users owl-dev john-users john-dev passwdqc-users yescrypt popa3d-users / oss-security kernel-hardening musl sabotage tlsify passwords / crypt-dev xvendor / Bugtraq Full-Disclosure linux-kernel linux-netdev linux-ext4 linux-hardening linux-cve-announce PHC | |
|
Open Source and information security mailing list archives
| ||
|
Date: Tue, 7 Aug 2007 17:05:33 -0700 From: "Robert Kim Wireless Internet Advisor" <evdo.hsdpa@...il.com> To: "Jared DeMott" <demottja@....edu> Cc: full-disclosure@...ts.grok.org.uk Subject: Re: Right, or wrong? Ask gates what his business position is regarding bugs On 8/7/07, Jared DeMott <demottja@....edu> wrote: > All: > > So, I've tried the vendor pay model for bug hunting and it wasn't always > well received. Apparently auction sites and 3 party purchasers are > fine, but some folks don't like the idea of selling directly to the > vendor. I was thinking that this would be ideal since the vendor would > have the most interest in knowing about/fixing the bug. My question to > the list is this: > Is it morally right, wrong, don't know, don't care, good business, bad > business, etc.? Either way we're moving away from that model, but I was > just curious how others on FD see it. > > Blessings, > Jared > -- Robert Q Kim, Wireless Internet Provider http://evdo-coverage.com/satellite-wireless-internet.html http://groups.google.com/group/unpaid-overtime 2611 S. Pacific Coast Highway 101 Suite 203 Unpaid Overtime Dept Cardiff by the Sea, CA 92007 206 984 0880 _______________________________________________ Full-Disclosure - We believe in it. Charter: http://lists.grok.org.uk/full-disclosure-charter.html Hosted and sponsored by Secunia - http://secunia.com/
Powered by blists - more mailing lists