Perhaps I need a better understanding of what open source means, but how can a program that is openly publishing its code not be super vulnerable to cyber security threats. That’s like a bank publishing exactly how all it’s security works right? Obviously I’m missing something here, so ELI5!
In: 427
Yes it makes it easy for people to find vulnerabilities, thats the idea. Other companies like google have a system to pay people if they find these vulnerabilities so they dont use it fpr bad stuff. Being open about bugs is a good thing, otherwise it will just become an exploit being sold on the darknet.
And contributers are public, anyone can track down who changed what line and is reviewed by multiple other people.
The core idea is to be transparent and not use security by obscurity to secure your stuff.
Latest Answers