Hi,
Google has just announced that they will pay up to $3113.70 for
proactive security patches to OpenSSH.
https://www.google.com/about/appsecurity/patch-rewards/
For a patch to be eligible, it has to 1) improve OpenSSH's security and
2) actually ship in a release.
If you want to work on a patch to improve some aspect of OpenSSH's
security then please contact us first on this list, our bugtracker or
the openssh at openssh.com list to make sure that what you are planning is
likely to be accepted.
-d
