this post was submitted on 07 Jul 2023
1671 points (92.9% liked)

Memes

45745 readers
1662 users here now

Rules:

  1. Be civil and nice.
  2. Try not to excessively repost, as a rule of thumb, wait at least 2 months to do it if you have to.

founded 5 years ago
MODERATORS
1671
It's Open Source! (lemmy.dbzer0.com)
submitted 1 year ago* (last edited 1 year ago) by [email protected] to c/[email protected]
 

Not discrediting Open Source Software, but nothing is 100% safe.

you are viewing a single comment's thread
view the rest of the comments
[–] [email protected] 55 points 1 year ago (2 children)

You can get a good look at a T-bone by sticking your head up a cow's ass but I'd rather take the butcher's word for it.

There are people that do audit open source shit quite often. That is openly documented. I'll take their fully documented word for it. Proprietary shit does not have that benefit.

[–] [email protected] 16 points 1 year ago (1 children)

And even when problems are found, like the heartbleed bug in OpenSSL, they're way more likely to just be fixed and update rather than, oh I dunno, ignored and compromise everybody's security because fixing it would cost more and nobody knows about it anyway. Bodo Moller and Adam Langley fixed the heartbleed bug for free.

[–] [email protected] 1 points 1 year ago (1 children)

Wasn't heartbleed in the wild for 2 years though?

[–] [email protected] 1 points 1 year ago (1 children)

Yeah, but that just happens sometimes. With proprietary software you don't even have the benefit of being able to audit it to see if the programmers missed something critical, you kinda just have to trust that they're smarter than a would-be hacker.

[–] [email protected] 1 points 1 year ago (1 children)

I get that, I just caution that FOSS doesn't automatically mean secure.

[–] [email protected] 2 points 1 year ago

Nothing is 100% secure. FOSS is definitely more secure, all else equal.

[–] [email protected] 1 points 1 year ago

Thanks Callahan!