[Subject Prev][Subject Next][Thread Prev][Thread Next][Subject Index][Thread Index]

RE: Linux Security

Subject: RE: Linux Security
From: ankura <ankura@xxxxxxx>
Date: Tue, 22 Jun 1999 08:46:31 +0530

I would say that the open source actually leads to a lot better security.
Security holes , after all, are more or less like bugs.
With the source open, holes come into light more easily, are are thus cured
more easily.
isn't there that famous phrase-"Given enough eyes, all bugs are shallow" ? 

The argument that "since the code is available more easily, the OS can be
compromised more easily" can't stand even for a moment- it has no legs at
all. In this context, I would like to 
quote the news yesterady about eCompany reporting a WINNT bug because it
felt MS was not responding fast enough. This kind of secret discovery of a
bug is a lot easier in closed source 
s/w, and correcting it takes longer. 

Not only in s/w, but in general, secret or not commonly available knowledge
is what leads to 
someone taking undue advantage.

that was my bit.
Ciao
Ankur



- -----Original Message-----
From: Krishnan Venkatachalam [mailto:vk@xxxxxxxxxxxx]
Sent: Monday, June 21, 1999 8:33 PM
To: linux-india
Subject: Linux Security


Hi,

I had an interesting discussion with a friend who thought that
"Proprietary Unices" were a better hedge as regards security than an OS
like Linux which is developed over the net and whose "Source Code" was
freely available. His argument was that since the "Code" was available
the OS could be compromised more easily.

My argument was that the security setup in any OS is more of an art and
is a continuous process and, that a known "glitches" were any day better
than unknown "holes" in a proprietary system and is a lot dependent on
the person implementing it. I also mentioned about the prolific use of
Linux on the Net.

Thoughts gentlemen.


regards

Krishnan

vk@xxxxxxxxxxxx


- --------------------------------------------------------------------
For more information on Linux in India visit http://www.linux-india.org/
Linux India is NOT a forum for Microsoft/India/Pakistan/US/UK bashing.
Flame baits will not be tolerated.  If you can appreciate satire read
http://www.templetons.com/brad/emily.html
- --------------------------------------------------------------------
For more information on Linux in India visit http://www.linux-india.org/
Linux India is NOT a forum for Microsoft/India/Pakistan/US/UK bashing.
Flame baits will not be tolerated.  If you can appreciate satire read
http://www.templetons.com/brad/emily.html

------------------------------

Prev by Subject: Re: Linux Security
Next by Subject: Re: Linux Security
Previous by thread: Re: Linux Security
Next by thread: Re: Linux Security
Index(es):
- Subject
- Thread