joined:Nov 10, 2009
As part of doing research on the possibility of offering security services for small to medium businesses operating online we are posing these questions to you:
1) Would you pay or not if you were contacted by a security researcher explaining that they believe(and can prove with permission) that you have a security hole in your code? The nature of the problem with your website is causing your source code to be leaked to the world. Source code that may or may not contain login details to other services, either FTP,MySQL etc.
2) Considering that website security audits price range from $40 - $10 000 and vary greatly depending on quality of service, how much would you pay if the researcher can prove to access source code of your website and provide a solution to remedy the problem?
3) Do you believe that the popularity of the website would determine the increase in asking price?