20 点作者 LukeHoersten超过 7 年前

4 条评论

tptacek超过 7 年前

And? Lots of companies do; it's a best practice.

评论 #15729807 未加载

评论 #15728591 未加载

评论 #15729550 未加载

milkshakes超过 7 年前

at least they posted the public key instead of the private one like adobe: <a href="https://arstechnica.com/information-technology/2017/09/in-spectacular-fail-adobe-security-team-posts-private-pgp-key-on-blog/" rel="nofollow">https://arstechnica.com/information-technology/2017/09/in-sp...</a>

fintler超过 7 年前

> Priority will be granted to encrypted reports – please include your PGP public key with such reports.<p>Is this a common thing? Why should they give priority to encrypted reports?

评论 #15726236 未加载

评论 #15726179 未加载

评论 #15726204 未加载

coenhyde超过 7 年前

Also a bug bounty: <a href="https://bugcrowd.com/tesla" rel="nofollow">https://bugcrowd.com/tesla</a>

Security Vulnerability Reporting Policy

4 条评论

Security Vulnerability Reporting Policy

4 条评论