Most code has undiscovered security problems. It is much easier to find them if you have all the code. I am unaware of Coverity actually finding a real problem in the code. It would have taken a lot longer to investigate each issue instead of just fixing the code.
On the flip side once you find a security problem or some else finds it for you, you can fix them... -Bryan On Dec 16, 2011, at 11:47 AM, Igor Galić wrote: > > > ----- Original Message ----- >> Licensing issues and proprietary code like Miles said. >> >> We also went through a long security cleanup of the code. We ran >> Coverity over the code and fix things it complained about even if it >> might have been a false positive. We still run the 2+ year old >> version in production that might still have security problems. > > You are writing this to a public mailing list ;) > >> -Bryan > > i > > -- > Igor Galić > > Tel: +43 (0) 664 886 22 883 > Mail: i.ga...@brainsware.org > URL: http://brainsware.org/ > GPG: 6880 4155 74BD FD7C B515 2EA5 4B1D 9E08 A097 C9AE >
