官术网_书友最值得收藏!

Conduct guidelines

This section gives details about what a researcher should specifically never do when finding vulnerabilities in the program. It is a notification paragraph, stating that while the disclosure of vulnerabilities is highly appreciated, there are certain things that the researchers should not do, such as:

  • Disclose any vulnerabilities or suspected vulnerabilities discovered to any other person
  • Disclose the contents of any submission to the program
  • Access private information of any person stored on a program's product
  • Access sensitive information
  • Perform actions that may negatively affect the program's users
  • Conduct any kind of physical attack on the organization's personnel, property, or data centers
  • Socially engineer any employee or contractor
  • Conduct vulnerability testing of participating services using anything other than test accounts
  • Violate any laws or breach any agreements in order to discover vulnerabilities
主站蜘蛛池模板: 兴化市| 米林县| 黄平县| 江城| 和政县| 新田县| 新丰县| 崇义县| 桂东县| 尼玛县| 文安县| 万全县| 略阳县| 乐昌市| 论坛| 利川市| 通州市| 利川市| 酒泉市| 七台河市| 湄潭县| 武强县| 安远县| 沾化县| 大理市| 红河县| 北碚区| 射洪县| 潢川县| 红河县| 靖安县| 红河县| 天全县| 朝阳区| 谢通门县| 江达县| 开封县| 正安县| 长沙市| 乌拉特中旗| 福鼎市|