Opened 4 weeks ago

Last modified 4 weeks ago

#30601 new enhancement

Please add link to HackerOne bug bounty portal to contacts for security issues

Reported by: gk Owned by: hiro
Priority: Medium Milestone:
Component: Webpages/Website Version:
Severity: Normal Keywords:
Cc: traumschule, trac-dip-importer Actual Points:
Parent ID: Points:
Reviewer: Sponsor:

Description

We have a bug bounty program for Tor and Tor Browser at HackerOne. We should add a link to it when talking about reporting security bugs on https://www.torproject.org/contact/.

Child Tickets

Change History (1)

comment:1 Changed 4 weeks ago by cypherpunks

at HackerOne

So you trust HO to receive info about vulnrs before you have received them. A damn smart idea. Though do bug bounty through Vupen, Zerodium and Hacking Team may be even better idea.

Note: See TracTickets for help on using tickets.