this post was submitted on 07 Jul 2023
1674 points (92.9% liked)

Memes

45549 readers
1603 users here now

Rules:

  1. Be civil and nice.
  2. Try not to excessively repost, as a rule of thumb, wait at least 2 months to do it if you have to.

founded 5 years ago
MODERATORS
[email protected]
[email protected]
[email protected]
[email protected]
1674
It's Open Source! (lemmy.dbzer0.com)
submitted 1 year ago* (last edited 1 year ago) by [email protected] to c/[email protected]
223 comments fedilink hide all child comments
 

Not discrediting Open Source Software, but nothing is 100% safe.

you are viewing a single comment's thread
view the rest of the comments
[–] [email protected] 4 points 1 year ago (1 children)

I think the point that’s more relevant to the original post is that while the speed with which fixes were rolled out were admirable, the flaw existed for years before anybody noticed it.

[–] [email protected] 3 points 1 year ago (1 children)

it would have been way worse, because it would have been less discoverable in a closed source software by someone somewhere

[–] [email protected] 1 points 1 year ago* (last edited 1 year ago)

Devil's Advocate...

Codenomicon, the company who actually named the flaw, didn't find the bug via the source code. They were building a security product and when testing that product against their own servers exposed the flaw. Open Source was not a factor in this discovery.

Google HAD discovered the flaw via the source code, exactly two days earlier.

In this case, the bug was 0.267379679% more discoverable due to being open source versus being closed.