Slashdot Mirror

← Back to Stories (view on slashdot.org)

More Than 10% of Mozilla Bug Finders Refuse Cash

Posted by Soulskill on from the never-underestimate-the-power-of-free-swag dept.

angry tapir writes "The open-source Mozilla project has been offering cash bounties for security bugs for six years now, but often bug finders simply turn down the cash. Between 10 percent and 15 percent of the serious security bugs reported since Mozilla launched its bug bounty program have been provided free of charge, according to Mozilla."

11 of 115 comments (clear)

  1. But 90% accept the cash... by Anonymous Coward · · Score: 1, Insightful

    Another nail in the coffin of socialism. Cash is the ultimate motivator.

    1. Re:But 90% accept the cash... by El_Muerte_TDS · · Score: 2, Insightful

      There are no statistics of how many people who accept the cash donate it to other open source projects who need the cash.

  2. "Often"? by Thats_Pipe · · Score: 3, Insightful

    "... often bug finders simply turn down the cash. Between 10 percent and 15 percent ..."

    Not too sure what connotations "often" has for others but 10-15% doesn't really seem that "often"

    --
    "You see them trees out back, I take care of them. I'm a tree, I'm a tree wizard." - Crazy Homeless Guy
    1. Re:"Often"? by correnos · · Score: 5, Insightful

      In the context of "here have some cash", 15% is pretty often.

  3. Re:More evidence... by VJ42 · · Score: 4, Insightful

    Y'know if they wanted to refuse the cash... instead of letting Mozilla keep it, have them donate it to the charity of their choice. Just sayin'.

    That's effectively what they're doing - the 'charity' of their choice being the Mozilla foundation.

    --
    If I have nothing to hide, you have no reason to search me
  4. Re:More evidence... by maxume · · Score: 2, Insightful

    It's a non-profit organization. That doesn't make it a charity, it just means it has a special tax status.

    The fact that they accept donation gives some credence to the idea of calling them a charity; that they make far more money from their business activities at least makes it questionable.

    --
    Nerd rage is the funniest rage.
  5. Re:More evidence... by kg8484 · · Score: 5, Insightful

    Ah, so what you really meant is:

    Y'know if they wanted to refuse the cash... instead of letting Mozilla keep it, have them donate it to the charity of my choice. Just sayin'.

  6. Re:Job may not allow you to accept cash bounty by thejam · · Score: 3, Insightful

    Also, your work visa may not allow you to accept cash for work of another employer.

  7. Re:Job may not allow you to accept cash bounty by Anonymous Coward · · Score: 1, Insightful

    My personal experience is that developers at many or most US federal contractors have no problems running Firefox.

    Many workplaces will relax such rules for workers who develop software as part of their jobs, and these are the individuals who will be finding bugs in the first place.

  8. In other news by Zepalesque · · Score: 3, Insightful

    Almost 90% of Mozilla Bug Finders Accept Cash Reward!

  9. Re:More evidence... by Snaller · · Score: 2, Insightful

    Bullshit. The Mozilla foundation is not a charity nor is giving them money charity.

    --
    If Google really cared they would fix Android Chrome to reflow text, instead of discriminating