security

Story: Open Source Security Draws CriticismTotal Replies: 2
Author Content
salparadise

Feb 23, 2004
9:39 AM EDT
i thought the difference was that the OSS community says "oh look, a flaw, here's the patch" whereas microsoft say "we've found another flaw" and leave a few weeks gap before the patch comes out so that various parties can exploit it ;-)
dave

Feb 23, 2004
9:43 AM EDT
Weeks? You mean months in many cases. It baffles me to no end that Microsoft sits on vulnerabilities for as long as they do.

Just last night I was talking to my wife about this subject, and the best answer we could come up with is that the industry that has grown up around fixing MS bugs wouldn't be happy if MS was actually pro-active in fixing these.

How can Norton make any money, if there were no long-standing bugs in MS?

dave
salparadise

Feb 23, 2004
11:22 AM EDT
well, that sounds a little more sane than clandestine links with the russian mafia which is what I first thought!

Posting in this forum is limited to members of the group: [ForumMods, SITEADMINS, MEMBERS.]

Becoming a member of LXer is easy and free. Join Us!