Language Selection

English French German Italian Portuguese Spanish

Google offers “leet” cash prizes for updates to Linux and other OS software

Filed under
Linux
Software

Google is offering rewards as high as $3,133.70 for software updates that improve the security of OpenSSL, OpenSSH, BIND, and several other open-source packages that are critical to the stability of the Internet.

The program announced Wednesday expands on Google's current bug-bounty program, which pays from $500 to $3,133.70 to people who privately report bugs found in the company's software and Web properties. Security researchers inside the company considered modifying the program to reward bug reports in open-source software, but eventually decided against that approach. The reason: bug bounty programs often invite a flood of reports of varying quality that can overwhelm the finite resources of open-source developers. What's more, it's frequently much harder to patch a vulnerability than merely to find it.

rest here




More in Tux Machines

Brocade Wants to Be Red Hat of OpenDaylight

Brocade wants to have the same relationship with OpenDaylight as Red Hat has with Linux. Read more

Rise of Linux – a hacker’s history

The original code of Linux was written for fun, or in Eric Raymond’s phrase, to ‘scratch the itch’ of Linus Torvalds, and later to satisfy the enthusiasm and programming itch of an assortment of hackers and hobbyists who, for the most part, had grown up in the age of the ZX80 and the BBC Micro, Acorns and Apricots, for which the code was often available – and hackable. For those who spent their childhood or adolescence delving into the home computers of the late Seventies and early Eighties, playing with software was a learning experience, and something to be shared. Linux could be said to have grown out of this ethos as much as it grew out of the free software movement, or the early Nineties culture of Usenet where “if you wrote something neat you posted it to Usenet” and the only proviso that came with the software was that “if the software breaks you get to keep both pieces.” Read more

Lollipop unwrapped: Chromium WebView will update via Google Play

Android 5.0, codenamed Lollipop, has introduced a key change to the WebView component, used by app developers to display HTML 5 content within their apps, making new features more readily available. Read more

Being a Sporadic Overview Of Linux Distribution Release Validation Processes

Our glorious Fedora uses Mediawiki to manage both test cases and test results for manual release validation. This is clearly ludicrous, but works much better than it has any right to. ‘Dress rehearsal’ composes of the entire release media set are built and denoted as Test Composes or Release Candidates, which can be treated interchangably as ‘composes’ for our purposes here. Each compose represents a test event. In the ‘TCMS’ a test event is represented as a set of wiki pages; each wiki page can be referred to as a test type. Each wiki page must contain at least one wiki table with the rows representing a concept I refer to as a unique test or a test instance. There may be multiple tables on a page; usually they will be in separate wiki page sections. Read more