psychothumbs@lemmy.world to Fediverse@lemmy.worldEnglish · 12 days agoA new security fund opens up to help protect the fediversetechcrunch.comexternal-linkmessage-square40fedilinkarrow-up1291arrow-down13cross-posted to: fediverse@piefed.socialOpenSource@europe.pub
arrow-up1288arrow-down1external-linkA new security fund opens up to help protect the fediversetechcrunch.compsychothumbs@lemmy.world to Fediverse@lemmy.worldEnglish · 12 days agomessage-square40fedilinkcross-posted to: fediverse@piefed.socialOpenSource@europe.pub
minus-squareMatt@lemmy.mllinkfedilinkEnglisharrow-up4·12 days ago …that will pay those who responsibly disclose security vulnerabilities that affect fediverse apps and services. If it is straight to the project, then I’m all for it. Otherwise, it seems sus.
minus-squarePhilipTheBucket@ponder.catlinkfedilinkEnglisharrow-up3·edit-212 days agoIt is to the person who discovers the vulnerability. That’s fairly normal… how would giving it to someone else motivate the result they’re trying to get?
If it is straight to the project, then I’m all for it. Otherwise, it seems sus.
It is to the person who discovers the vulnerability. That’s fairly normal… how would giving it to someone else motivate the result they’re trying to get?