charleslemaux/Mirror
1
0
Fork 0
mirror of https://github.com/MirrorNetworking/Mirror.git synced 2024-11-18 02:50:32 +00:00
Code Issues Actions Packages Projects Releases Wiki Activity

Update README.md

Browse Source
This commit is contained in:
mischa 2023-01-25 13:19:02 +01:00 committed by GitHub
parent da6d4bb8ff
commit 62ca179346
No known key found for this signature in database
GPG Key ID: 4AEE18F83AFDEB23
1 changed files with 1 additions and 10 deletions
Show Stats Download Patch File Download Diff File Expand all files Collapse all files

11
README.md
View File

@ -231,16 +231,7 @@ Therefore, we need to [KISS](https://en.wikipedia.org/wiki/KISS_principle) 😗.
--- ---
# Incident Response & Bug Bounty # Incident Response & Bug Bounty
A lot of projects use Mirror in production. If you found a critical bug / exploit in Mirror core, please contact us at "security [at] mirror-networking [dot] com, or reach out to us in [our Discord](https://discord.gg/N9QVxbM). A lot of projects use Mirror in production. If you found a critical bug / exploit in Mirror core, please follow the steps outlined in our [Security Policy](SECURITY.md).
Depending on the severity of the exploit, we offer a $50 - $500 bug bounty.
**Specifically we are looking for:**
* Ways to crash a Mirror server.
* Ways to exploit a Mirror server.
* Ways to leave a Mirror server in undefined state.
We are **not** looking for DOS/DDOS attacks, as those are expected to be handled by the hosting infrastructure.
**Credits / past findings / fixes:** **Credits / past findings / fixes:**
* 2020, fholm: fuzzing ConnectMessage to stop further connects [[#2397](https://github.com/vis2k/Mirror/pull/2397)] * 2020, fholm: fuzzing ConnectMessage to stop further connects [[#2397](https://github.com/vis2k/Mirror/pull/2397)]