100 € dobi, kdor najde varnostno luknjo.

Pogoji:

* takoj po najdbi je treba prijaviti napako
* nagrado dobi le prvi, ki prijavi napako
* za varnostno luknjo šteje
	- remote code execution: root@b, s@b, a@b, root@e, root@ass, root@varovalka, s21fe (telefon)
	- pridobivanje TLS certifikata za: {šijanec,sijanec}.{eu,net,org} šijanec.si šijanec.com 4a.si sjanec.eu (če ni napaka CAja in če je domena v moji lasti)
* napadalec ne zlorabi dostopa

Ostale varnostne luknje so plačane po dogovoru med mano in najditeljem.

Kontakt:

* +38664176345 klic/sms
* anton@sijanec.eu oz asija3@guest.arnes.si v primeru nedelovanja mailserverja
* ostali kontakti na http://splet.4a.si/#vizitka

Ta dokument ne predstavlja dovoljenja za napadanje/iskanje lukenj/...


----- english:

100 € gets, whoever finds a security vulnerability.

Rules:

* immediately after finding, one must report the bug
* only the first reported gets the award
* scope
	- remote code execution: root@b, s@b, a@b, root@e, root@ass, root@varovalka, s21fe (phone)
	- obtain TLS cert for: {šijanec,sijanec}.{eu,net,org} šijanec.si šijanec.com 4a.si sjanec.eu (only if not CA's bug and domain is in my ownership)
* Attacker does not exploit/abuse access

Payment for other security vulnerabilities is subject to discussion between me and the one that found the vulnerability.

Contact:

* +38664176345 call/sms
* anton@sijanec.eu or asija3@guest.arnes.si in case of mailserver not working
* other contact info on http://splet.4a.si/#vizitka

This document does not represent an allowance to hack/attack/search for vulns/...