I’m all for open source software so it can be understood, developed, and used by more people than if it was proprietary. However, I don’t get how it can be secure if malicious actors have access to the source code and the entire software package to practice their attacks against?
In: Engineering
> if malicious actors have access to the source code and the entire software package to practice their attacks against?
Everyone else has the same access, so they can fix any vulnerabilities just as easily as the bad guys can find them.
Conversely, bad guys can ‘practice’ their hacks just as well on closed source code, but there is absolutely no way for anyone other than the owning company to fix it, and owning companies are notorious for failing to fix these things in a timely manner. If they don’t see a cheque coming in, they don’t do anything.
Closed source code is generally LESS secure and LESS safe than open source code.
Latest Answers