I’m all for open source software so it can be understood, developed, and used by more people than if it was proprietary. However, I don’t get how it can be secure if malicious actors have access to the source code and the entire software package to practice their attacks against?
In: Engineering
Malicious attackers can spend tons of time trying to find vulnerabilities, yes, but an ARMY of people also has access to the code and wants it to stay safe, so they do the same thing and also patch any holes they find.
“Practicing” attacks isn’t really a thing, and even if it was, you wouldn’t need the source code to do it because you would be breaking into the version that’s actually running, not the decompiled version.
Latest Answers