Comment by ifdefdebug
8 years ago
> "Why do we offer $5k for a small bug again? Look at CF, they don't offer any money!"
Answer: "Because if they had set up a bounty of $50k for security issues, they'd had thousands of researchers/students/white hats etc. watching the output of their servers."
"...and could maybe avoid or lessen the impact of this fiasco."