- TalkBack 5 of 6:
- Next »
- « Previous
- Thread View
- Flat View
- RE: Open-source security moves to next step
-
We applaud the government's efforts at creating code with more integrity. Using Coverity to scan for flaws in the process is a great step, but taking a look at our most recently published Top 5 Most Overlooked Open Source Vulnerabilities it's clear that even with improved coding practices, vulnerabilities remain in the code, largely because the developers had unknowingly used an older, unpatched version of an open source project for which a more secure solution already existed.
Due to overwhelming demands, overtaxed resources and often geographically dispersed development teams, running a code scan for open source vulnerability as part of the build process would quickly identify vulnerable (not improperly coded but insecure) open source, point you to the exact location in the code base where it existed, and further, point you to the fix.
Our belief is that it's better to find out your code is insecure before it hits the market, and your customer base, or before you implement it internally.
We look to the government to take their efforts to the next level by ensuring their newly cleaned up coding process includes secure open source.
--Melisa LaBancz-Bleasdale, Palamida - Posted by: Melisa@... Posted on: 01/14/08 You are currently: a Guest | Members login | Terms of Use
Sweet!!
techboy_z | 01/11/08
|
|
Not negative info
wackoae | 01/11/08
|
|
One does wonder...
ego.sum.stig@... | 01/11/08
|
 
Actually, Microsoft gives away a better tool
oldsysprog | 01/14/08
|
|
RE: Open-source security moves to next step
Melisa@... | 01/14/08
|
|
Leaving the half the value of OSS on the table
Melisa@... | 01/14/08
|
What do you think?
SponsoredWhite Papers, Webcasts, and Downloads
- Five Steps to Determine When to Virtualize YourServers VMware Server virtualization isn't just for big companies. Entry-level ... Download Now
- Building the Virtualized Enterprise with VMware Infrastructure VMware VMware virtualization software has been adopted by over 120,000 enterprise ... Download Now
- Three Steps You Need to Know to Stop Data Loss Varonis Sensitive data exposed to misuse or loss... it is the stuff of nightmares ... Download Now
Premier Vendor Content Whitepapers, webcasts & resources from our Power Center Sponsors
- Reduce risk. Reduce complexity. Increase reliability.
-
A simplified IT environment isn't just less complex. It's also more reliable. Standardize on a single Linux platform with SUSE Linux Enterprise from Novell, and get the world's most interoperable Linux
- Learn more >>
- New Online Dashboard for IT Leaders
-
Read about top issues IT decision-makers face every day, plus get cost-effective solutions to real-life IT problems.
- Learn more >>
- Microsoft Dynamics CRM Online - Free Six-Month Trial for Eligible Organizations
-
Microsoft Dynamics CRM Online provides fast online access, simple contact management and better sales performance for a low monthly cost - the best value on the market today.
- Learn more about the free, six-month trial offer>>
Popular Sanity Saver Videos
