EDIT: I didn't realize vB5 has actually been released.. So this should be meant for, before vB5 actually get's popular..(successor of vB4)
Is vBulletin5 going to be audited, BEFORE it is released?!
In this topic here: https://www.vbulletin.com/forum/show...light=whitehat
'm0rgulvale' brings up an excellent argument surrounding the security of vBulletin.
So, is vBulletin going to be audited by professionals?
Maybe you could set up some sort of 100% open forum, 'honey-pot'(wrong word to use, but I can't think of the correct term - so when something is found, it is automatically reported to you) for ethical, and whitehat hackers like myself to test, and look for vulnerabilities.
I personally have found two 0day's in vanilla vBulletin, and that was when I was a complete amateur!! But I'm not here to brag of what I've done...
I think it should be audited by pros. I'm sure there are many white-hat hackers out there that are willing to do these audits for FREE, just to get a name for themselves...
It is ALWAYS better to catch the bugs before they are abused...
I've added a poll that would be great if you could vote aswell.
Is vBulletin5 going to be audited, BEFORE it is released?!
In this topic here: https://www.vbulletin.com/forum/show...light=whitehat
'm0rgulvale' brings up an excellent argument surrounding the security of vBulletin.
So, is vBulletin going to be audited by professionals?
Maybe you could set up some sort of 100% open forum, 'honey-pot'(wrong word to use, but I can't think of the correct term - so when something is found, it is automatically reported to you) for ethical, and whitehat hackers like myself to test, and look for vulnerabilities.
I personally have found two 0day's in vanilla vBulletin, and that was when I was a complete amateur!! But I'm not here to brag of what I've done...
I think it should be audited by pros. I'm sure there are many white-hat hackers out there that are willing to do these audits for FREE, just to get a name for themselves...
It is ALWAYS better to catch the bugs before they are abused...
I've added a poll that would be great if you could vote aswell.