• Imacat@lemmy.dbzer0.com
    link
    fedilink
    arrow-up
    10
    arrow-down
    1
    ·
    1 year ago

    Open source code isn’t immune to exploits. It’s impossible to exhaustively test every interaction in massive code bases for unintended behavior.

    The upside of open source is that a well intentioned person might find a vulnerability and get it fixed. Up until then it might be someone’s 0 day.

    • justastranger
      link
      fedilink
      arrow-up
      2
      arrow-down
      4
      ·
      1 year ago

      You’re talking about exploits. They were talking about backdoors. The are not the same thing.

      • Imacat@lemmy.dbzer0.com
        link
        fedilink
        arrow-up
        10
        ·
        1 year ago

        Open source code isn’t immune to backdoors. It’s impossible to exhaustively test every interaction in massive code bases for unintended behavior.

        The upside of open source is that a well intentioned person might find a backdoor and get it fixed. Up until then it might be someone’s backdoor.

        Better?