[SGVLUG] How to argue that Open Source software is secure
matti
mathew_2000 at yahoo.com
Wed Feb 11 17:42:25 PST 2009
Hi,
Nice links,
FUD is always frustrating.
from last year's RSA conference they have
a MS vs Linux security session...
http://www.linux.org/news/2008/04/10/0002.html
Just an FYI from all the security and
software conferences I have been to...
In general:
You can't prove/show some software system is secure,
ONLY that it is insecure.
( there's just too many ways to breach a system,
many of the bugs maybe unknown. )
basically, It has been proved that nearly ALL software
systems currently in use are imho INSECURE.
(ok, the latest patches keep it going a bit
longer until another breech is discovered.. )
Open Source software WHICH has and is being
reviewed regularly for security issues/software
bugs seems to do well with regards
to security patches.
The important part of ALL software, whether
Open Source or Not, is to have it reviewed
and updated w/regards to bugs and security
issues.
Thankfully everyone is considering the security
issues more seriously.
best
matti
More information about the SGVLUG
mailing list