Please create an account to participate in the Slashdot moderation system

 


Forgot your password?
Close
typodupeerror
×
Bug Security

PayPal Reviewing Qualifying Age For Vulnerability Rewards 95

Posted by Unknown Lamer from the break-it-before-you-can-use-it dept.
itwbennett writes "In follow-up to 17-year old Robert Kugler's claim that PayPal denied him a bug bounty because he was under 18, the company now says that it is 'investigating whether it can lower the qualifying age for vulnerability rewards for those who responsibly report security problems.' The company also said that the vulnerability had already been reported by another researcher — although they didn't mention that in the email to Kugler telling him he wouldn't be receiving payment."
This discussion has been archived. No new comments can be posted.

PayPal Reviewing Qualifying Age For Vulnerability Rewards More

PayPal Reviewing Qualifying Age For Vulnerability Rewards

Comments Filter:

  • Why restrict it at all? (Score:4, Insightful)

    by HalAtWork ( 926717 ) on Wednesday May 29, 2013 @11:59AM (#43850929)
    It's a voluntary process, why would they need to restrict it? It's not like it's forced child labor. If anything, it's a learning experience.

  • Re:Why restrict it at all? (Score:5, Insightful)

    by idontgno ( 624372 ) on Wednesday May 29, 2013 @12:04PM (#43851007) Journal

    If anything, it's a learning experience.

    Indeed. A valuable lesson for any impressionable youth to learn: Paypal will work very hard to screw you out of anything it can. Unless the PR blowback gets bad enough.

    (Paypal can apparently tolerate a certain low buzz of "Paypal sucks". They have considerably more trouble with Streisand-amplified flack.)

  • Re:Why restrict it at all? (Score:4, Insightful)

    by TheCarp ( 96830 ) <sjc@NospAM.carpanet.net> on Wednesday May 29, 2013 @12:12PM (#43851147) Homepage

    There is only one reason to restrict it...legal CYA. Remember everywhere in the world makes their own laws and many of them have restrictions on what one can do with young people, which includes paying them.

    Does paying a minor, even for such a voluntary action, require parental approval? If a 15 year old submits a bug, gets paid, and uses the money to buy drugs, could the parent sue, claiming they were irresponsible to give so much money to a teenager directly?

    Remember, lawmakers are lazy, they like to be overly broad or not think things through, I could totally see legislative attempts at curbing anything from drug use to underage prostitution hamfistedly creating problems here. Law is often not limited by its own intentions.

    In the end, I bet the answer has three letters: CYA:

    "What are the implications of allowing people under 18 to submit bugs?"
    "It depends on......."
    "Ok sorry I asked; no submissions from people under 18."

  • Can't 'Legally' Pay a 17-Year-Old? (Score:5, Insightful)

    by CanHasDIY ( 1672858 ) on Wednesday May 29, 2013 @12:30PM (#43851401) Homepage Journal

    Pure, unfiltered bullshit.

    Evidence: 16-year-olds who work at McDonald's.

    C'mon, PayPal; Fuckin' a kid around is bad enough, but then having the balls to lie to his face about why? That's uber-dickish.

  • Re:Award scholarships for under-aged people (Score:1, Insightful)

    by davmoo ( 63521 ) on Wednesday May 29, 2013 @12:51PM (#43851655)

    Mozilla is not a publicly traded corporation and all profits are plowed back in to Mozilla.

    PayPal's parent eBay, on the other hand, is a publicly traded corporation who's goal is to make a profit for stock holders. Thus laws for it are very different.

    Comparing a Mozilla bug payment to a PayPal bug payment is a very apples to oranges comparison.

    And you need to learn how to debate an issue without attacking others by calling them "dumbass".

Slashdot Top Deals

"God is a comedian playing to an audience too afraid to laugh." - Voltaire

Close