Linux guru warns on security in open-source code

TalkBack 4 of 90:: Next »; « Previous

Thread View
Flat View

Yes but????: Isn't that much like 3rd party vendors stuffing windows holes? Won't problems like that be addressed by security patches for whatever oss you are using?
And if it's a site specific incident, isn't there a downside to maintaining OS level code in house? That is one more thing you must be aware of when programmning on the system, and you may have to change the logic more than once over time. I pity the future programmers that have to deal with a system like that? True? (This is equivalent to a proprietary system having a high level report writer, just as an example. Everytime the underlying software is upgraded you must scan all of your reports to make sure they still conform if there has been any database structure mods, logic mods that change the way your hardcoded report will work etc.) I even once worked on a system that was proprietary but they gave you the source with the system for inhouse modification only. What a nightmare to maintain during every service pack cycle. It got so bad I had to travel to the vendor and work with them the get the logic changes addressed in the custom and all other changes. That site was not doing extensive inhouse mods, but it was still 2 weeks of work that was doing nothing more than supporting the update. I didn't see it as productive time in a sense that they were paying me for. It was pure maintenance. That is the big downside to having access to the source. I worked with that system on multiple sites over a number of years and it became known as more of a curse than a blessing.; Posted by: April May Posted on: 10/27/06 You are currently: a Guest | Members login | Terms of Use

Reply to Story Reply to Message

Alert moderator to an offensive message

Subscribe to this discussion via Email or RSS

Open-Source should be under the 'eye' Linux User 1 | 10/26/06

Programmer's job? April May | 10/26/06

In Open Source, the fields overlap CobraA1 | 10/26/06

Yes but???? April May | 10/27/06

parameter defence in-DUH-vidual | 10/26/06

Let the games begin! ShadeTree | 10/26/06

Your world views notwithstanding... Spikey_Mike | 10/26/06

What about the Windows kernel? xuniL_z | 10/26/06

What about the Windows kernel? Spikey_Mike | 10/26/06

It blows the ABMer mind!! NonZealot | 10/26/06

Windows Vista was a trainwreck... Spikey_Mike | 10/27/06

Change your argument much? NonZealot | 10/27/06

Reply to NZ Spikey_Mike | 10/27/06

Reply to Spikey_Mikey NonZealot | 10/27/06

never said it was, did i? April May | 10/27/06

Talk about being deluded! ShadeTree | 10/27/06

So that explains why it has already been hacked zkiwi | 10/28/06

Please provide evidece of a hack on the ... ShadeTree | 10/30/06

Authentium reckon they've done it zkiwi | 10/30/06

Re: Let the games begin! none none | 10/26/06

Not a refutation at all, just the opposite eb276 | 10/26/06

Another possibility. 3D0G | 10/26/06

It is funny, isn't it? NonZealot | 10/26/06

Makes me wonder who is paying the hackers anyway ? Intellihence | 10/27/06

What makes you think... 3D0G | 10/27/06

is that Mike Cox's brother? Linux Geek | 10/26/06

Dummy Geek... yyuko@... | 10/26/06

Agree BobF_z | 10/27/06

You would know... John Zern | 10/27/06

"Wouldn't". That's the word John Zern | 10/27/06

I bet he was paid off by MS daMan25 | 10/26/06

Linux guru warns on security in open-source code Loverock Davidson | 10/26/06

In case you hadn't read the article zkiwi | 10/26/06

Which I did thanks Loverock Davidson | 10/26/06

Your response indicates you didn't read it zkiwi | 10/26/06

The Linux kernel Linux User 1 | 10/26/06

I did thanks Loverock Davidson | 10/26/06

What about the WindBlows Kernel PROBLEMS . Intellihence | 10/27/06

OS religion? Carl Rogers | 10/27/06

for clarification ... phburks | 10/29/06

The only faults you pointed ut were your inability to use Unix like OSs. B.O.F.H. | 10/29/06

And as it would seem that zkiwi | 10/29/06

RE: In case you hadn't read the article joe6pack_z | 10/26/06

Aww Loverock Davidson | 10/26/06

let's break this down so it is simple for you to understand fireman949 | 10/30/06

It's no use, LinuxGeek is a lost cause, yyuko A.Typical Zork | 10/26/06

Well, as it's been said before John Zern | 10/27/06

Village Idiot Semi-Finals handydan918 | 10/27/06

I Agree, though you may have missed one John Zern | 10/29/06

Very Impressive Postings MLHACK | 10/26/06

Finally, an objective voice xuniL_z | 10/26/06

Did you read some other article? DemonX | 10/26/06

I know it. xuniL_z | 10/26/06

Attn: Mr. Know it all. Spikey_Mike | 10/26/06

So you would... zkiwi | 10/26/06

a hybrid model. April May | 10/27/06

"The internet needs scrapped and redesigned as a good network." handydan918 | 10/27/06

Why do you feel more secure? zkiwi | 10/26/06

You forgot to apply ABMer logic! NonZealot | 10/26/06

What is ABM? hoiatl | 10/26/06

ABM perryroyce@... | 10/27/06

Well... zkiwi | 10/27/06

I will still be looking to Linux because... msolgeek | 10/26/06

Ooooo, you got me!!! NonZealot | 10/26/06

What you said was... msolgeek | 10/27/06

Awww, msolgeek is getting frustrated NonZealot | 10/27/06

Well... zkiwi | 10/27/06

That depends Sabz5150 | 10/27/06

MythTV NonZealot | 10/27/06

If I read correctly.... Shelendrea | 10/26/06

The only certain thing in the world of computers... Spikey_Mike | 10/26/06

Linux woes and problems Linux User 1 | 10/26/06

LOOK EVERYONE!!!@ HE MENTIONS ME!!! Loverock Davidson | 10/26/06

Plain & simply he called you an idiot ! Intellihence | 10/27/06

Inferiority Complex Spacely Spacerockets | 10/28/06

Spacely Spacerockets filrod@... | 10/31/06

Why don't you take your meds and run along... Linux_Fanboy | 10/28/06

Of course it expected to start happening hoiatl | 10/26/06

Internet Security - Despite O/.S zczc2311@... | 10/26/06

So when is the Linux community gonna get off their ass and build a secure.. BeGoneFool | 10/27/06

Have you tried??? Spikey_Mike | 10/27/06

Impossible! ejhonda | 10/27/06

EJ get thou blood pressure under control BXLE | 10/27/06

Don't fret, I tell all it's bulletproof Boot_Agnostic | 10/27/06

Poor , poor MS Shills . Intellihence | 10/27/06

Security........ Kobashrer | 10/27/06

I will use Linux exclusively LinuxUser&XPGamerGraphic | 10/27/06

Not recommending it?! Kobashrer | 10/27/06

I use XP and Linux, happily. WebThingy | 10/28/06

Give me a break, Linux will always be... Linux_Fanboy | 10/28/06

What do you think?

SponsoredWhite Papers, Webcasts, and Downloads

Why Isn't Server Virtualization Saving Us More? A Few Small Changes May Dramatically Increase Your Efficiency VMware Companies have rapidly adopted server virtualization over the past few ... Download Now
The True Costs of Virtual Server Solutions VMware In an economic environment that is repeatedly heralding the message "do ... Download Now
Virtualization: Architectural Considerations And Other Evaluation Criteria VMware Of the many approaches to x86 systems virtualization available in the ... Download Now

Premier Vendor Content Whitepapers, webcasts & resources from our Power Center Sponsors

SmartPlanet

Thought-provoking progressive ideas on diverse topics that intersect with technology, business, and life, and matter to the world at large. Visit SmartPlanet
More from IBM
How to Drive Better Business Outcomes with Exceptional Web Experiences Download the eBook
Driving Business Agility through SOA Connectivity & Integration Read the White Paper from IBM
Linking Decisions and Information for Organizational Performance Read the Tom Davenport study

Read the original story

Linux guru warns on security in open-source code

What do you think?

SponsoredWhite Papers, Webcasts, and Downloads

Premier Vendor Content Whitepapers, webcasts & resources from our Power Center Sponsors

SmartPlanet

Blogs

Product Reviews

Videos

White Papers and Webcasts

Downloads

More

ZDNet News & Blogs

Product Reviews

Product Blogs

White Papers & Webcasts

Downloads