A decade later Dr. Bernstein acknowledges a security flaw in one of his software packages, djbdns. He has always offered to pay $1000 to anyone that found a security flaw in something he has offered from Qmail, ucspi-tcp, daemontools, and djbdns. It took a decade for someone to find it, and unlike most software providers he also has provided a patch.
