Feathur bug bounty program?

kaniini · Mar 29, 2014

Hello,

Does anyone know if Feathur is paying out for security vulnerabilities?

Nett · Mar 29, 2014

Probably not. @BlueVM

mcmyhost · Mar 29, 2014

It's Open Source.

If you found a security issue submit it to their GitHub.

kaniini · Mar 29, 2014

mcmyhost said:
It's Open Source.

If you found a security issue submit it to their GitHub.

Did you seriously just propose I drop 0day on a public bug tracker where you have no control over bug visibility?

Aldryic C'boas · Mar 29, 2014

I find it more amusing that you intended to ransom it.

DomainBop · Mar 29, 2014

kaniini said:
Hello,

Does anyone know if Feathur is paying out for security vulnerabilities?

Paying people? This is BlueVM we're talking about, right?

----------

edited to add purple text

mcmyhost · Mar 29, 2014

kaniini said:
Did you seriously just propose I drop 0day on a public bug tracker where you have no control over bug visibility?

Who said to post the actual exploit there?

I simply said to post it on their GitHub that there is an issue.

Also, it's not like it's hard to contact them

http://feathur.com/submitticket.php?step=2&deptid=2

https://twitter.com/feathurcp

http://forum.feathur.com

HalfEatenPie · Mar 30, 2014

I'm going to lock this.

1. You can contact them directly and ask them directly.

2. It is a public open-source code, so probably submitting a bug report (or like you said, because of visibility you can contact them directly)

3. <Removed upon request>

Feathur bug bounty program?

kaniini

Beware the bunny-rabbit!

Nett

Article Submitter

mcmyhost

New Member

kaniini

Beware the bunny-rabbit!

Aldryic C'boas

The Pony

DomainBop

Dormant VPSB Pathogen

mcmyhost

New Member

HalfEatenPie

The Irrational One