Tor Project will launch the bug bounty program soon.
The anonymous Tor project will soon launch a reward program for the vulnerabilities found.
“We are grateful to people who have looked at our code for many years, but the only way to continue to improve is to attract more people,” said Nick Mathewson, co-founder, researcher and chief architect of the Tor Project. The program will be launched in the new year on the HackerOne platform.
Most likely, it will be available at https://hackerone.com/onion .
')
Let me remind you that in 2014 the Ministry of Internal Affairs of the Russian Federation announced a competition , the purpose of which is to “hack” TOR. The contractor, however, a year later decided to abandon the contract.
And in November of this year there were some interesting news related to the words "Tor" and "FBI": Carnegie Mellon University either hacked, or did not hack Tor and either received or did not receive a million dollars from the FBI (briefly available in this collection).
Now, the Tor Project is starting to improve the safety of its users by resorting to the help of the “white hat” and bugbounty programs: “We have a sponsor, OTF (Open Technology Fund), which is paid by HackerOne,” said Roger Dingledine, co-founder and director of research Tor Project. “The program will be launched by invitation only,” added Mike Perry, lead developer for Tor Browser.
By the way, in the latest version of the browser, Tor Browser 5.0.6, at the top of the screen there is an offer to donate to the development of the project.
This offer ceases to appear after several restarts of the browser.
Whether these two news need to be tied up is up to the public, but the early launch of the official reward program for the vulnerabilities found is good news: “This program will encourage people to look at our code, find errors in it, and help us improve it,” - sums up Nick Mathewson.
“We are grateful to people who have looked at our code for many years, but the only way to continue to improve is to attract more people,” said Nick Mathewson, co-founder, researcher and chief architect of the Tor Project. The program will be launched in the new year on the HackerOne platform.
Most likely, it will be available at https://hackerone.com/onion .
')
Let me remind you that in 2014 the Ministry of Internal Affairs of the Russian Federation announced a competition , the purpose of which is to “hack” TOR. The contractor, however, a year later decided to abandon the contract.
And in November of this year there were some interesting news related to the words "Tor" and "FBI": Carnegie Mellon University either hacked, or did not hack Tor and either received or did not receive a million dollars from the FBI (briefly available in this collection).
Now, the Tor Project is starting to improve the safety of its users by resorting to the help of the “white hat” and bugbounty programs: “We have a sponsor, OTF (Open Technology Fund), which is paid by HackerOne,” said Roger Dingledine, co-founder and director of research Tor Project. “The program will be launched by invitation only,” added Mike Perry, lead developer for Tor Browser.
By the way, in the latest version of the browser, Tor Browser 5.0.6, at the top of the screen there is an offer to donate to the development of the project.
This offer ceases to appear after several restarts of the browser.
still
Whether these two news need to be tied up is up to the public, but the early launch of the official reward program for the vulnerabilities found is good news: “This program will encourage people to look at our code, find errors in it, and help us improve it,” - sums up Nick Mathewson.
Source: https://habr.com/ru/post/356978/
All Articles