Re: [klas-talk] proprietary vs open source security?

Fri, 18 Oct 2002 00:47:13 -0700 

On Fri, Oct 18, 2002 at 12:57:45PM +0700, Lewi wrote:
# http://www.linuxplanet.com/linuxplanet/interviews/4495/1/
# 
# link diatas menceritakan wawancara dari director of Purdue's Center for Education 
and Research in Information Assurance and Security
# 
# kayaknya open source tidaklah seaman yang dulu, 
# 
# seperti yang dikatakan bahwa,
# Another response is: "Because it's open source; it's easier to fix." Maybe. It 
depends on where the code's used. If it's used in a certified environment or an 
embedded application, and from my standpoint, whether or not I can do all the 
maintenance on my own car... if I have to go back and install a fix to the breaks 
every time it crashes and kills somebody, I don't view that as more secure. Secure 
means it doesn't need the patches. It's done right the same time. So the people who 
are saying that their code is more secure and it still needs patches every other 
week--whether it's proprietary or open source--are playing fast and loose with the 
semantics of what security means. 
# 
# so gimn donk, enaknya pake OS apa?

tetaplah pake OpenSource OS, karena IMO :

Parameter Secure itu adalagh banyak tidaknya security bugs yang bisa di
eksploitasi untuk memperoleh akses atau untuk menghentikan service.
Nah banyak tidaknya security bugs ini di tentukan oleh pemakaian dan
auditing, makin banyak yg mengaudit sourcenya makin banyak bugs yg akan
muncul dan tentukan makin banyak bug fix yang di apply, hasilnya
kualitas dari aplikasi itu semakin bagus. Inilah gambaran dari
OpenSource.

Sekarang ini yang penting adalah bagaimana agar system selalu
uptodate terhadap bug fix, nah jadi security itu bergantung pada
Administrator dan Intruder nya :), siapa yg cepat dia yg pegang kendali.

Cheers,
Indra Kusuma
--
 ,''`. Indra{@,.}Kusuma.OR.ID -> [Security - Debian/GNU Linux - IPv6]
: :' : 0x4D829E49 - 187D 8C98 FB76 E1A8 5558 853A 4795 4FC1 4D82 9E49
`. `'
  `-

---------------------------------------------------------------------
Jumlah pelanggan (updated daily): 182
Untuk berhenti berlangganan, kirim email ke: [EMAIL PROTECTED]
Arsip milis, hyperlink: http://www.mail-archive.com/klas-talk@;regex.com/

Kirim email ke