From owner-freebsd-questions@FreeBSD.ORG Wed Jun 3 18:47:31 2009 Return-Path: Delivered-To: freebsd-questions@freebsd.org Received: from mx1.freebsd.org (mx1.freebsd.org [IPv6:2001:4f8:fff6::34]) by hub.freebsd.org (Postfix) with ESMTP id A14C21065678 for ; Wed, 3 Jun 2009 18:47:31 +0000 (UTC) (envelope-from Ggatten@waddell.com) Received: from mailhost0.waddell.com (mailhost0.waddell.com [12.154.38.61]) by mx1.freebsd.org (Postfix) with ESMTP id 63D038FC25 for ; Wed, 3 Jun 2009 18:47:31 +0000 (UTC) (envelope-from Ggatten@waddell.com) Received: from mailhost3.waddell.com (mailhost3.waddell.com [10.1.10.28]) by mailhost0.waddell.com (8.13.8/8.13.8) with ESMTP id n53IkHkm014404; Wed, 3 Jun 2009 13:46:37 -0500 (CDT) (envelope-from Ggatten@waddell.com) Received: from mailhost3.waddell.com (localhost [127.0.0.1]) by localhost (Postfix) with SMTP id C5DDC73104; Wed, 3 Jun 2009 13:46:16 -0500 (CDT) Received: from wadpexf0.waddell.com (wadpexf0.waddell.com [192.168.204.24]) by mailhost3.waddell.com (Postfix) with ESMTP id B7ECA730E2; Wed, 3 Jun 2009 13:46:16 -0500 (CDT) Received: from WADPEXV0.waddell.com ([192.168.204.25]) by wadpexf0.waddell.com with Microsoft SMTPSVC(6.0.3790.3959); Wed, 3 Jun 2009 13:46:16 -0500 X-MimeOLE: Produced By Microsoft Exchange V6.5 Content-class: urn:content-classes:message MIME-Version: 1.0 Content-Type: text/plain; charset="us-ascii" Content-Transfer-Encoding: quoted-printable Date: Wed, 3 Jun 2009 13:46:15 -0500 Message-ID: <70C0964126D66F458E688618E1CD008A0793EE90@WADPEXV0.waddell.com> In-Reply-To: X-MS-Has-Attach: X-MS-TNEF-Correlator: Thread-Topic: Open_Source thread-index: Acnkee4jg2puYLLWSkKZi67oIVdRaAAAPJ0A References: <4ad871310906020843n3e7dc96ap28d5d622e844abf1@mail.gmail.com><20090603004914.73f40a60@gluon.draftnet><20090603091800.GA1177@phenom.cordula.ws><20090603102720.GB1349@phenom.cordula.ws><20090603133343.GB1988@phenom.cordula.ws><4ad871310906030653o62d7e708w1a7be44334ab8dab@mail.gmail.com><20090603152939.GF1988@phenom.cordula.ws><20090603185039.54cdd820.freebsd@edvax.de> From: "Gary Gatten" To: "Wojciech Puchar" , "Polytropon" X-OriginalArrivalTime: 03 Jun 2009 18:46:16.0474 (UTC) FILETIME=[93929FA0:01C9E47B] Cc: Glen Barber , cpghost , freebsd-questions@freebsd.org Subject: RE: Open_Source X-BeenThere: freebsd-questions@freebsd.org X-Mailman-Version: 2.1.5 Precedence: list List-Id: User questions List-Unsubscribe: , List-Archive: List-Post: List-Help: List-Subscribe: , X-List-Received-Date: Wed, 03 Jun 2009 18:47:32 -0000 Isn't there an "OpenVMS" somewhere? Is it true OSS? Also, how many people actually review source code AND have the skills to find security related issues? Seems mostly "black hats" would be interested in this as they have ulterior motives whereas "typical" users just want to use the software for what it was intended for. I like "Open" for all the reasons most people do, but not convinced having access to source to review for security holes is a major "feature". I like source to fix things and add features / functionality! Not that I can do it, but I can pay someone to WAY faster than getting M$ or others fix anything! -----Original Message----- From: owner-freebsd-questions@freebsd.org [mailto:owner-freebsd-questions@freebsd.org] On Behalf Of Wojciech Puchar Sent: Wednesday, June 03, 2009 1:33 PM To: Polytropon Cc: cpghost; Glen Barber; freebsd-questions@freebsd.org Subject: Re: Open_Source > > I'd like to add that IF security problems get discovered in OSS, > it's usually just a matter of few time that this problem gets > corrected. This is mostly because the public is able to look at that's true - i pointed it out at the beginning. It can be found easily that someone adds backdoor intentionally. But unintentional security holes are different thing. Everyone can find them and fix, but at the same time everyone can find=20 them and use them. With closed source both are more difficult. > In MICROS~1 land, you give yourself entirely into the hand of a > corporation that is not interested in selling secure products, So this is not open/closed source problem, but micro-soft approach. They just don't care about security. As they don't care about performance=20 and about bugs. But that's just micro-soft. > A counter-example is VMS. It is a commercial product, but highly > reliable and secure. At least is said too, i never used or even seen VMS. _______________________________________________ freebsd-questions@freebsd.org mailing list http://lists.freebsd.org/mailman/listinfo/freebsd-questions To unsubscribe, send any mail to "freebsd-questions-unsubscribe@freebsd.org"
"This email is intended to be reviewed by only the intended recipient and may contain information that is privileged and/or confidential. If you are not the intended recipient, you are hereby notified that any review, use, dissemination, disclosure or copying of this email and its attachments, if any, is strictly prohibited. If you have received this email in error, please immediately notify the sender by return email and delete this email from your system."