Re: Linux security

To: Steve Lamb <morpheus@calweb.com>, Debian User's List <debian-user@lists.debian.org>
Subject: Re: Linux security
From: the lone gunman <lgunman@sewage.debian.org>
Date: Wed, 19 Aug 1998 15:35:18 -0500
Message-id: <[🔎] 19980819153518.A768@sewage>
Mail-followup-to: Steve Lamb <morpheus@calweb.com>, Debian User's List <debian-user@lists.debian.org>
Reply-to: Matt Garman <garman@uiuc.edu>
In-reply-to: <[🔎] 199808191840.LAA02819@mail.calweb.com>; from Steve Lamb on Wed, Aug 19, 1998 at 11:42:25AM -0700
References: <[🔎] 199808191840.LAA02819@mail.calweb.com>

On Wed, Aug 19, 1998 at 11:42:25AM -0700, Steve Lamb wrote:
> On Wed, 19 Aug 1998 13:21:37 -0500, the lone gunman wrote:
> 
> >only to the Microsoft programmers.  In my mind, it just seems that the
> >more folks there are looking at code, the better the chances of
> >discovering bugs, security concerns, etc.
> 
>     It is the glass half empty versus the glass half full problem.
> 
>     He sees the glass half empty.  Open source means more people looking for
> security holes to *exploit*.
> 
>     You see the glass half full.  Open source means more people looking for
> security holes to *plug*.

I think the linux community can boast that it fixes exploits pretty
quickly.  Although exploits may be easier to discover with open
source, they are arguably easier to fix.

Perhaps it's harder to find the exploits in closed source
(i.e. Windows), but once the exploit is discovered, Microsoft must be
relied on to fix the problem (for the most part).

<shrug>

Reply to:

References:
- Re: Linux security
  - From: "Steve Lamb" <morpheus@calweb.com>

Prev by Date: Re: xv package for deb?
Next by Date: Re: big file problem
Previous by thread: Re: Linux security
Next by thread: Re: Linux security
Index(es):
- Date
- Thread