Why would you expect a reward for a bug just because it was a crash? I work in S... | Hacker News

Hacker Newsnew | past | comments | ask | show | jobs | submit

		cashmonkey85 on Sept 11, 2013 \| parent \| context \| favorite \| on: Why you should not trust emails sent from Google Why would you expect a reward for a bug just because it was a crash? I work in SVG and have reported a handful of crashes and never expected to qualify for their security reward.

zmmmmm on Sept 11, 2013 [–]

Oh I absolutely didn't. I felt a bit bad afterwards for assigning it as a security bug. But that is really my point - when there's cash on offer people are apt to take a very liberal definition of what a security bug actually is.

Guidelines | FAQ | Lists | API | Security | Legal | Apply to YC | Contact