Want to read Slashdot from your mobile device? Point it at m.slashdot.org and keep reading!

 


Forgot your password?
Close
typodupeerror
×
Bug Microsoft Security The Almighty Buck IT

Microsoft Says No To Paying Bug Bounties 148

Posted by timothy from the like-mel-gibson-in-ransom dept.
Trailrunner7 writes "In the wake of both Mozilla and Google significantly increasing their bug bounties to the $3,000 range, there have been persistent rumors in the security community that Microsoft soon would follow suit and start paying bounties as well. However, a company official said on Thursday that Microsoft was not interested in paying bounties. 'We value the researcher ecosystem, and show that in a variety of ways, but we don't think paying a per-vuln bounty is the best way. Especially when across the researcher community the motivations aren't always financial. It is well-known that we acknowledge researcher's contributions in our bulletins when a researcher has coordinated the release of vulnerability details with the release of a security update,' Microsoft's Jerry Bryant said."
This discussion has been archived. No new comments can be posted.

Microsoft Says No To Paying Bug Bounties More

Microsoft Says No To Paying Bug Bounties

Comments Filter:

  • Re:ROI (Score:3, Informative)

    by mcgrew ( 92797 ) * on Friday July 23, 2010 @09:49AM (#33002332) Homepage Journal

    Attribution: Lily Tomlin's "Ernestine the telephone operator", referring to the then monopoly AT&T (We don't care, we don't have to...we're the phone company), for the younger slashdotters who weren't around when AT&T owned every telephone in America (back then you had to rent your phone).

  • Re:Translation: (Score:3, Informative)

    by Muad'Dave ( 255648 ) on Friday July 23, 2010 @02:43PM (#33005918) Homepage

    As they say, "the proof's in the pudding."

    That's how it has been corrupted over time. The actual quote [worldwidewords.org] is, "The proof of the pudding is in the eating."

    From that article:

    "The full proverb is indeed the proof of the pudding is in the eating and proof has the sense of “test” (as it also has, or used to have, in phrases such as proving-ground and printer’s proof). The proverb literally says that you won’t know whether food has been cooked properly until you try it. Or, putting it figuratively, don’t assume that something is in order or believe what you are told, but judge the matter by testing it; it’s much the same philosophy as in seeing is believing and actions speak louder than words.

    The proverb is ancient — it has been traced back to 1300 and was popularised by Cervantes in his Don Quixote of 1605. It’s sad that it has lasted so long, only to be corrupted in modern times."

Slashdot Top Deals

He has not acquired a fortune; the fortune has acquired him. -- Bion

Close