Not discrediting Open Source Software, but nothing is 100% safe.

  • @TheYang
    link
    English
    31 year ago

    it would have been way worse, because it would have been less discoverable in a closed source software by someone somewhere

    • Muddybulldog
      link
      fedilink
      English
      1
      edit-2
      1 year ago

      Devil’s Advocate…

      Codenomicon, the company who actually named the flaw, didn’t find the bug via the source code. They were building a security product and when testing that product against their own servers exposed the flaw. Open Source was not a factor in this discovery.

      Google HAD discovered the flaw via the source code, exactly two days earlier.

      In this case, the bug was 0.267379679% more discoverable due to being open source versus being closed.