You know how paypal, google, facebook etc offer bug bounties? They pay good money for responsibly disclosing a bug in their services. This makes everyone happy: service is far more secure, and talented people are happy to test it and instead of selling on black market they still make good pennies.
What if you make something simillar here, except pay in fg? I, for one, know a bug that can lead to taking over accounts under some circumstances. But how do I know I'm not getting banned for poking my nose where I shouldn't? Instead, make it official and be happy people are willing to help secure the site
Just my 0.03c.
ps. login handled without SSL .. this is soo bad idea.
I ain't attaching a poll since this is mostly a concern to administration
This post was edited by nuvo on Mar 24 2015 05:01am