[Boards: 3 / a / aco / adv / an / asp / b / biz / c / cgl / ck / cm / co / d / diy / e / fa / fit / g / gd / gif / h / hc / his / hm / hr / i / ic / int / jp / k / lgbt / lit / m / mlp / mu / n / news / o / out / p / po / pol / qa / r / r9k / s / s4s / sci / soc / sp / t / tg / toy / trash / trv / tv / u / v / vg / vp / vr / w / wg / wsg / wsr / x / y ] [Home]
4chanarchives logo
is open source software secure because anyone can scrutinise it?
Images are sometimes not shown due to bandwidth/network limitations. Refreshing the page usually helps.

You are currently reading a thread in /g/ - Technology
Thread replies: 13
Thread images: 1
Anonymous
2015-12-12 09:51:35 Post No. 51818975
[Report] Image search: [Google]
File: gurkha1.jpg (146 KB, 699x588) Image search: [Google]
gurkha1.jpg
146 KB, 699x588
Anonymous 2015-12-12 09:51:35 Post No. 51818975 [Report]
is open source software secure because anyone can scrutinise it?
>>
Anonymous 2015-12-12 10:06:09 Post No.51819114
[Report]
Anonymous 2015-12-12 10:06:09 Post No.51819114 [Report]
>>51818975
No. If I release the source code of a shitty software, it won't be "secure".
But a good designed and implemented software is considered (in general) more secure for the simple reason that you expect that more people are going to lurk your code to help you fix holes than actually exploiting them.
>>
Anonymous 2015-12-12 10:14:24 Post No.51819182
[Report]
Anonymous 2015-12-12 10:14:24 Post No.51819182 [Report]
>>51818975

Wouldn't knowing how the software actually works make it less secure?
>>
Anonymous 2015-12-12 10:27:36 Post No.51819300
[Report]
Anonymous 2015-12-12 10:27:36 Post No.51819300 [Report]
>>51818975
open source software is insecure because no one ever bothers to scrutinize it, except hackers
>>
Anonymous 2015-12-12 10:32:18 Post No.51819341
[Report]
Anonymous 2015-12-12 10:32:18 Post No.51819341 [Report]
>>51819300
This. At least with closed source people are getting paid to make sure the software is safe.
>>
Anonymous 2015-12-12 10:35:33 Post No.51819368
[Report]
Anonymous 2015-12-12 10:35:33 Post No.51819368 [Report]
No, just look at the Morris worm. The worm's architect was able to find the exploit only because he could look at the source code for finger and rsh
>>
Anonymous 2015-12-12 10:48:56 Post No.51819474
[Report]
Anonymous 2015-12-12 10:48:56 Post No.51819474 [Report]
>>51818975
Gee, I wonder if the most insecure OS today is open source...
>>
Anonymous 2015-12-12 10:53:09 Post No.51819507
[Report]
Anonymous 2015-12-12 10:53:09 Post No.51819507 [Report]
>>51818975
>is open source software secure because anyone can scrutinise it?
No.

But if the OSS you use is popular and it has active development then the users of the software will have some advantages over closed source software. Namely, once a bug or exploit is discovered, there won't be any secrecy. Everyone will know about it. And everyone will know the status of the bug/exploit fix.

As a rule there isn't anything more secure about FLOSS when compared to proprietary/closed source software. Most people are putting there 'trust' into the writers of the code. And since humans write the code there will be mistakes.

The exception to the rule would be people who have the ability to read through and understand the code of the open source software they run. They can check out everything they use, assuming they have the time. But that isn't the case for most people.
>>
Anonymous 2015-12-12 10:54:41 Post No.51819524
[Report]
Anonymous 2015-12-12 10:54:41 Post No.51819524 [Report]
>>51819341
Or, more likely, paid to make sure the software is unsafe.
>>
Anonymous 2015-12-12 10:55:26 Post No.51819529
[Report]
Anonymous 2015-12-12 10:55:26 Post No.51819529 [Report]
>>51818975
It's not an inherent thing, but popular open source projects are typically more secure.
Also, some shit has to be open source to prove that is fucking works. If you try to distribute proprietary encryption software, you would be laughed out of the room.
>>
Anonymous 2015-12-12 10:57:35 Post No.51819548
[Report]
Anonymous 2015-12-12 10:57:35 Post No.51819548 [Report]
>>51819539
>Linking every post in the thread
What kind of advanced shitposting is this?
>>
Anonymous 2015-12-12 11:03:06 Post No.51819597
[Report]
Anonymous 2015-12-12 11:03:06 Post No.51819597 [Report]
>>51818975
open source doesn't mean secure, but it can help in the sense that anyone can look over it
the question is IF and WHO has actually looked at a piece of code
Thread replies: 13
Thread images: 1
banner
banner
[Boards: 3 / a / aco / adv / an / asp / b / biz / c / cgl / ck / cm / co / d / diy / e / fa / fit / g / gd / gif / h / hc / his / hm / hr / i / ic / int / jp / k / lgbt / lit / m / mlp / mu / n / news / o / out / p / po / pol / qa / r / r9k / s / s4s / sci / soc / sp / t / tg / toy / trash / trv / tv / u / v / vg / vp / vr / w / wg / wsg / wsr / x / y] [Home]
All trademarks and copyrights on this page are owned by their respective parties. Images uploaded are the responsibility of the Poster. Comments are owned by the Poster.
If a post contains personal/copyrighted/illegal content you can contact me at [email protected] with that post and thread number and it will be removed as soon as possible.
DMCA Content Takedown via dmca.com
All images are hosted on imgur.com, send takedown notices to them.
This is a 4chan archive - all of the content originated from them. If you need IP information for a Poster - you need to contact them. This website shows only archived content.