Re: [CentOS] bounties for exploits against CentOS?

On 01/16/12 10:34 AM, Bennett Haselton wrote:

With companies like Facebook and Google offering cash prizes for people who can find security holes in their products, has there ever been any consideration given to offering cash rewards to people finding security exploits in CentOS or in commonly bundled services like Apache?

companies like facebook and google have significant(!!) cash flow. centos is a volunteer project. from where would this prize money come?

you'd do better addressing this question to Redhat Enterprise Linux, anyways, since CentOS's goal is to be a near exact copy, bugs and warts included.