yea, if i had said it it would have been really close to what john said. a hacker could exploit open source easily... hrm, just as easily as a developer could find it or even the average joe, which i know from experience dumping patches on mailinglists is common. closed software is harder to get un-hacked because its just not there. you see it and you cant fix it.
o john im thinking of teaching an advanced linux session if your willing to give me a slot. --cross-compiling --shortcuts --grub vs bash --other stuff.. -------------- next part -------------- An HTML attachment was scrubbed... URL: http://oxygen.nocdirect.com/pipermail/general_brlug.net/attachments/20040217/d8fa44cd/attachment.htm From [EMAIL PROTECTED] Tue Feb 17 07:30:19 2004 From: [EMAIL PROTECTED] (will hill) Date: Tue Feb 17 07:25:56 2004 Subject: [brlug-general] Blows the theory out of the water.... In-Reply-To: <[EMAIL PROTECTED]>; from [EMAIL PROTECTED] on Mon, Feb 16, 2004 at 23:08:18 -0600 References: <[EMAIL PROTECTED]> Message-ID: <[EMAIL PROTECTED]> Not really and the argument is spurious. That article only proves that the exploit is published and known. If having source code really does help people find holes, then closed source only helps a few people find holes. In the Microsoft case, only China, the KGB, 55 universities, and many other close friends could have been helped by the source but could not tell anyone. Now we shall see if Microsoft has the resources or inclination to fix their old browser, IE5. One thing for sure is that it's neither the first nor last hole that will be found. Hat's off to David Jackson, who seems to have understood how this works, but we have all been spun badly. Free code becomes good code or dies and there's no harm in everone being able to see good code. It's hard to express that when you are bombarded with hyperbole like, "having the source code leave you wide open to exploits". On 2004.02.16 23:08 Shannon Roddy wrote: > Well... this blows out of the water the theory that having the source > code available will not help exploit writers for windows.... > > http://www.securitytracker.com/alerts/2004/Feb/1009067.html > > Shannon >
