官术网_书友最值得收藏!

Conduct guidelines

This section gives details about what a researcher should specifically never do when finding vulnerabilities in the program. It is a notification paragraph, stating that while the disclosure of vulnerabilities is highly appreciated, there are certain things that the researchers should not do, such as:

  • Disclose any vulnerabilities or suspected vulnerabilities discovered to any other person
  • Disclose the contents of any submission to the program
  • Access private information of any person stored on a program's product
  • Access sensitive information
  • Perform actions that may negatively affect the program's users
  • Conduct any kind of physical attack on the organization's personnel, property, or data centers
  • Socially engineer any employee or contractor
  • Conduct vulnerability testing of participating services using anything other than test accounts
  • Violate any laws or breach any agreements in order to discover vulnerabilities
主站蜘蛛池模板: 沁水县| 桂林市| 司法| 舟山市| 宾阳县| 贺兰县| 丁青县| 静海县| 扎兰屯市| 阜新市| 日土县| 佛山市| 南康市| 长沙县| 平南县| 自治县| 塔河县| 姚安县| 四子王旗| 宁晋县| 田东县| 屏山县| 林西县| 卢湾区| 务川| 洛南县| 马龙县| 武平县| 青海省| 高邮市| 香河县| 汉源县| 石林| 沙洋县| 贵港市| 旺苍县| 鲁甸县| 岳普湖县| 库伦旗| 曲靖市| 通州区|