Bitcoin Forum>Other>Meta
Author

Topic: bitcointalk vulnerability (Read 345 times)

eternalgloom
legendary
Activity: 1792
Merit: 1283
bitcointalk vulnerability
May 28, 2019, 09:05:46 AM
#9
Quote from: GreatArkansas on May 28, 2019, 06:32:47 AM
Is that considered as 'off-topic' post?
Can I report that post of Sharon121212 to the moderator?

You can report any post you want, it doesn't mean it will be accepted though.

OP, definitely give an update on whether you've received the bounty.
Without disclosing the vulnerability of course Wink
TryNinja
legendary
Activity: 2758
Merit: 6830
Re: bitcointalk vulnerability
May 28, 2019, 08:02:03 AM
#8
Quote from: LoyceV on May 28, 2019, 07:57:27 AM
So the bounty is 1 ounce of gold, worth $1283.29 and paid as 0.1468BTC?
If he "finds the email address of user DefaultTrust and explain in detail how he did it", he gets 1 ounce of gold worth in BTC. That's based on what OP said about his vulnerability: "about emails & usernames";

But, he can get more based on a few factors found in the thread I linked above. Example: Root access from a regular user (8 ounces) related to a security flaw in non-PHP software used by the forum (150%) would give him 150% of 8 oz of gold = 12 oz.
LoyceV
legendary
Activity: 3290
Merit: 16489
Thick-Skinned Gang Leader and Golden Feather 2021
Re: bitcointalk vulnerability
May 28, 2019, 07:57:27 AM
#7
Quote from: hilariousandco on May 28, 2019, 07:11:22 AM
Quote from: theymos on October 12, 2013, 01:09:00 PM
- 1 XAU: Find the email address of user DefaultTrust and explain in detail how you did it.
So the bounty is 1 ounce of gold, worth $1283.29 and paid as 0.1468BTC?
hilariousandco
global moderator
Activity: 3934
Merit: 2676
Join the world-leading crypto sportsbook NOW!
Re: bitcointalk vulnerability
May 28, 2019, 07:11:22 AM
#6
Quote from: theymos on October 12, 2013, 01:09:00 PM
- 1 XAU: Find the email address of user DefaultTrust and explain in detail how you did it.
GreatArkansas
legendary
Activity: 2338
Merit: 1354
Re: bitcointalk vulnerability
May 28, 2019, 06:32:47 AM
#5
Quote from: eternalgloom on May 28, 2019, 04:48:52 AM
Quote from: ?? on ??
Still trying to figure the last part of your post @OP. If you meant would you be able to join a bounty after you must have shown your claimed discover. I don't think that's possible you don't have the needed rank or activities to join a bounty yet https://bitcointalksearch.org/topic/merit-new-rank-requirements-2818350

But after showing it if it's good then you can be awarded merit which you require.

I laughed out loud when I read this comment :') Completely wrong context, seems that the word bounty only has one meaning for most people on this forum.
Is that considered as 'off-topic' post?
Can I report that post of Sharon121212 to the moderator?

eternalgloom
legendary
Activity: 1792
Merit: 1283
Re: bitcointalk vulnerability
May 28, 2019, 04:48:52 AM
#4
Quote from: ?? on ??
Still trying to figure the last part of your post @OP. If you meant would you be able to join a bounty after you must have shown your claimed discover. I don't think that's possible you don't have the needed rank or activities to join a bounty yet https://bitcointalksearch.org/topic/merit-new-rank-requirements-2818350

But after showing it if it's good then you can be awarded merit which you require.


I laughed out loud when I read this comment :') Completely wrong context, seems that the word bounty only has one meaning for most people on this forum.

OP, definitely do send a pm to Theymos, if you can. Not sure if he'd read PM's from new members, so I'd make the topic of your PM very clear.
Is this a publicly known bug or is it a zero-day that you've found yourself?

Edit:

Quote from: hilariousandco on May 28, 2019, 07:11:22 AM
Quote from: theymos on October 12, 2013, 01:09:00 PM
- 1 XAU: Find the email address of user DefaultTrust and explain in detail how you did it.

No idea how to find the actual email address though. Then again, if you indeed do have access to emails & usernames, you shouldn't have a problem with that Wink
ene1980
hero member
Activity: 2002
Merit: 535
Re: bitcointalk vulnerability
May 28, 2019, 01:17:10 AM
#3
Quote from: k3rnel31 on May 27, 2019, 09:19:47 PM
hi , i have discovered some vulnerability in bitcointalk in simple machine code , about emails & usernames , would be any bounty if i show them ?

thanks
You can contact Theymos regarding that, send him a PM and see what he has to say about it or wait until he responds here and i am certain he will give you the bounty if it is a legit vulnerability.


Quote from: ?? on ??
Still trying to figure the last part of your post @OP. If you meant would you be able to join a bounty after you must have shown your claimed discover. I don't think that's possible you don't have the needed rank or activities to join a bounty yet https://bitcointalksearch.org/topic/merit-new-rank-requirements-2818350

But after showing it if it's good then you can be awarded merit which you require.

He is not talking about joining any bounty mate, he wants to help the forum out and help with solving the vulnerability and if he does that is he eligible for a bounty if he reveals those vulnerability as he claims.
TryNinja
legendary
Activity: 2758
Merit: 6830
Re: bitcointalk vulnerability
May 27, 2019, 09:23:11 PM
#2
Possibly. It depends on what the vulnerability is and what it does.

Everything you need to know can be found here: Security bounties
k3rnel31
newbie
Activity: 10
Merit: 0
Re: bitcointalk vulnerability
May 27, 2019, 09:19:47 PM
#1
hi , i have discovered some vulnerability in bitcointalk in simple machine code , about emails & usernames , would be any bounty if i show them ?

thanks
Bitcoin Forum>Other>Meta
Jump to: