Memes

47966 readers

582 users here now

Rules:

Be civil and nice.
Try not to excessively repost, as a rule of thumb, wait at least 2 months to do it if you have to.

founded 5 years ago

MODERATORS

[email protected]

1667

It's Open Source! (lemmy.dbzer0.com)

submitted 2 years ago* (last edited 2 years ago) by [email protected] to c/[email protected]

223 comments fedilink hide all child comments

Not discrediting Open Source Software, but nothing is 100% safe.

you are viewing a single comment's thread
view the rest of the comments

[–] [email protected] 50 points 2 years ago (5 children)

I had a discussion with a security guy about this.

For software with a small community, proprietary software is safer. For software with a large community, open source is safer.

Private companies are subject to internal politics, self-serving managers, prioritizing profit over security, etc. Open source projects need enough skilled people focused on the project to ensure security. So smaller companies are more likely to do a better job, and larger open source projects are likely to do a better job.

This is why you see highly specialized software has really enterprise-y companies running it. It just works better going private, as much as I hate to say it. More general software, especially utilities like OpenSSL, is much easier to build large communities and ensure quality.

[–] [email protected] 10 points 2 years ago* (last edited 2 years ago)

Unfortunately that is not the case. Closed sourced software for small communities are not safer. My company had an incredibly embarrassing data leak because they outsourced some work and trusted a software used also by the competitors. Unfortunately the issue was found by one of our customers and ended up on the newspapers.

Absolutely deserved, but still, closed sourced stuff is not more secure

load more comments (4 replies)