Beware of the chilling effects of collecting Google bounties, they will claim a ... | Hacker News

Hacker Newsnew | past | comments | ask | show | jobs | submit

		midas007 on April 13, 2014 \| parent \| context \| favorite \| on: Use after free bug in OpenSSL Beware of the chilling effects of collecting Google bounties, they will claim a reward is invalid if you've blogged about the vuln outside of their timetable.

innoying on April 13, 2014 [–]

Isn't that common sense? If you disclose the bug publicly before it's patched you won't get the reward...

midas007 on April 13, 2014 | [–]

Sort of. But Google has a history of how it treats independent researchers.

Guidelines | FAQ | Lists | API | Security | Legal | Apply to YC | Contact