The end of the #curl bug-bounty
Uncategorized
40
Posts
18
Posters
41
Views
-
@bagder@mastodon.social hey Daniel, I'm curious, were you financing the bug bounty payouts by yourself?
@ulveon no, the IBB did that
-
The bugbounty crash of 2025 in a single image (from the blog post)
@bagder talking about graphs maybe one showing the payout per month/year might be nice?
"The bugbounty cash"
-
@bagder talking about graphs maybe one showing the payout per month/year might be nice?
"The bugbounty cash"
-
@poolitzer there's also this
-
The end of the #curl bug-bounty
https://daniel.haxx.se/blog/2026/01/26/the-end-of-the-curl-bug-bounty/
Charging people money in an International context is complicated and a maintenance burden.
I think if it does come to this, you might consider requiring a small donation to a charity? This would dramatically reduce the hassle on all sides, and do something good as a bonus.
-
Charging people money in an International context is complicated and a maintenance burden.
I think if it does come to this, you might consider requiring a small donation to a charity? This would dramatically reduce the hassle on all sides, and do something good as a bonus.
@fre receiving money for vulnerability *reports* would not mean that we ship vulnerabilities though...
-
@fre receiving money for vulnerability *reports* would not mean that we ship vulnerabilities though...
@bagder of course not, but I guess someone could spin it like "they now have incentive to publish buggy code", right? Anyway, that wasn't the point of the post and I didn't want to insinuate any bad intentions, sorry. I'll remove that part.
-
The end of the #curl bug-bounty
https://daniel.haxx.se/blog/2026/01/26/the-end-of-the-curl-bug-bounty/
@bagder Is the header image for the blogpost AI generated?
-
@bagder Is the header image for the blogpost AI generated?
@nini to illustrate the point of the blog post, I should probably just say: maybe, maybe not. =)
-
@ulveon no, the IBB did that
@bagder@mastodon.social Were you pressured to remove the payouts by them, or was it a decision you requested unilaterally due to slop reports?
-
@bagder@mastodon.social Were you pressured to remove the payouts by them, or was it a decision you requested unilaterally due to slop reports?
@ulveon I asked them to stop.
-
The end of the #curl bug-bounty
https://daniel.haxx.se/blog/2026/01/26/the-end-of-the-curl-bug-bounty/
@bagder I feel that this onslaught of AI slop reports is a DOS attack that weakens the security.
-
@bagder I feel that this onslaught of AI slop reports is a DOS attack that weakens the security.
@ollej that is certainly a risk, yes
-
@poolitzer there's also this
@bagder should have looked that up first, ofc you had them ready :D
-
@nini to illustrate the point of the blog post, I should probably just say: maybe, maybe not. =)
@bagder I shall wink in your direction and touch my nose on the side in acceptance of this.
-
The end of the #curl bug-bounty
https://daniel.haxx.se/blog/2026/01/26/the-end-of-the-curl-bug-bounty/
@bagder "not even one in twenty was real" is one of the most damning things I've ever heard about the state of BBPs. that's abysmal.
-
The end of the #curl bug-bounty
https://daniel.haxx.se/blog/2026/01/26/the-end-of-the-curl-bug-bounty/
@bagder
sorry to hear the slop has ruined a good thing. hopefully HackerOne learn from this and start taking stronger steps to curb this issue. -
The bugbounty crash of 2025 in a single image (from the blog post)
-
The end of the #curl bug-bounty
https://daniel.haxx.se/blog/2026/01/26/the-end-of-the-curl-bug-bounty/
@bagder yea, GHSA drafts are decent, but I really wish I could disclose a report that has been declined. Github, please?
-
The end of the #curl bug-bounty
https://daniel.haxx.se/blog/2026/01/26/the-end-of-the-curl-bug-bounty/
@bagder not sure if intentional but the article title from pressmind.org had all of it's polish utf-8 characters replaced with "?"
Feed RSS
Gli ultimi otto messaggi ricevuti dalla Federazione
-
I changed it to one I like better
-
-
@scottjenson I don't think I want to summon up that vibe, though, even in the form of a common meme. It sounds creepy to people who don't know it. I'm going to change the text.
-
La prova generale è iniziata: in corso in Florida il wet dress rehearsal della missione Artemis II. Si svolgeranno tutte le attività che precedono il lancio. Se tutto andrà bene, partenza verso la Luna domenica sera (in Italia saranno le prime ore di lunedì 9)
https://www.nasa.gov/blogs/missions/2026/01/31/countdown-begins-for-artemis-ii-wet-dress-rehearsal/
-
@scottjenson It's a meme making fun of right wing nostalgia. The original had dark conspiratorial overtones -- a spooky unnamed "they" -- but the mocking memes are more silly, with old videogame screenshots or 70s tv commercials for appliances. I saw at least one white supremacist video by searching for the phrase on X, though, so I guess it's still used by right wing creeps, too.
-
lol. lmfao.
-
Trump won this district by 17%. There's a town called White Settlement in this district. It's a very red suburb of Forth Worth, considered a safe Republican seat in the Texas Senate.
I can't stop reloading the page. The gap has widened since I started watching.
-
Quizzino della domenica: Orologio triangolare
@matematica - Disponete i numeri da 1 a 12 in un orologio in un modo particolare...
