These changes are part of what is called Mozilla as its Security Bug Bounty Program "which was first launched in 2004.
"A lot has changed in the past six years since the program was first announced Mozilla," said Lucas Adamski, Director of Security Engineering, Mozilla, as quoted from the PC Advisor, July 22, 2010.
"We believe that the best way to keep our users safe is to provide economic benefits to the researchers who did the right thing when finding information," said Adamski.
Mozilla also expands the scope of the present program, which now reaches not only the Firefox browser and Thunderbird mail client they are, but also includes the Firefox mobile browser and other services used by these products. Either version or beta release, all included in the count.
"We usually provide a fee to users who find the problem but do not we publish," said Adamski. "Now we want everyone to know," he said.
Adamski said, Mozilla is still entitled to refuse to pay the prize at the inventor of bugs if they think the person is not acting for the interests of the wider user.
Nevertheless, the prize will still be given even if the researcher inventor bug is already publish the information he found, or if the inventor does not have the time to collaborate with the Mozilla security team to solve the problem
Blogged with the Flock Browser
No comments:
Post a Comment