Open Source Security
The cluster debates whether open source software is more secure and trustworthy than closed source due to its auditable code, with proponents emphasizing community review and skeptics citing vulnerabilities like those in OpenSSL.
Activity Over Time
Top Contributors
Keywords
Sample Comments
If it's open source and people can check that it doesn't anything hidden, yes
Does closed source not have security issues?
You can't hide something in open source code for those who audit what they use. You can for those who just install without reviewing.
open source means you can review the code. pretty sure, since this comes from them, is intensely scrutinized. So again, not worried.
It's open source, others can audit it if you can't.
Open source does not mean secure. Half the time nobody even reads the source, let alone compares the binaries to the repository.
You can't trust what you cannot audit. Open Source is auditable software. You can hire non-vested 3rd parties to validate it.
Wouldn't open-source and/or auditing alleviate this?
This is open source. You're thinking of trusted execution, audits, licenses with disclosure requirements, or signed affidavits which is a totally different thing than open source. Otherwise you could claim that just about anything isn't open source just because you're not sure what is happening on someone else's computer.
Nothing is 100% guaranteed, but with an open source project, given enough users, its far less likely for someone to be able to bury nefarious stuff without many eyes looking at it and at least one person sounding an alert.