Language Selection

English French German Italian Portuguese Spanish

Open Source vs. Windows: Security Debate Rages On

Filed under
Microsoft
OSS

It's a topic of fierce debate among high-tech cognoscenti: What's more secure -- "open source" code such as Linux and Apache, or proprietary "closed source" operating systems and applications, Microsoft's in particular?

The regularity with which Microsoft has taken to announcing vulnerabilities and consequent software fixes has left few cheering about its security. In contrast, high expectations endure for open source, with proponents arguing that it's inherently more secure because a much larger set of developers can read the code, vet it and correct problems.

"I'm struggling to think of anyone who would argue the other way," says Adam Jollans, chief Linux technologist at IBM Latest News about IBMSoftware Group.

"Discovery is different in the open source and closed source approach," Jollans says. "Because source code is visible to lots of people, if there is a security issue, it tends to be spotted earlier. The open source community isn't shy about criticizing bad code."

Thus, open source developers are "more able to respond quickly and to use new and more secure techniques. Because they perform for peers' kudos, this, too, behooves them to perform well," Clarke says.

"Open source development is centered around operating systems designed many years ago with security and Internet connectivity as a base requirement," he adds.

Open source is foremost an "ethos" that "is precisely the best social environment for the best development of anything," Clarke maintains. "By contrast, the principle culprit of poor security, Microsoft, has several major issues with producing secure code."

Microsoft seems lax to security threats," says Robert Swiercz, managing director of the Portal of Montreal, the city's Web site. "I have less and less ability to trust them." He, too, expresses confidence in the open source community, saying, "This is where the solutions are coming from."

However, some call these assumptions into question and assert there's a lack of accountability in fixing open source. A number of research firms are ready to puncture the belief that open source is by its very nature superior.

Other I.T. managers say they like a lot of open source security tools and applications but corporate policies prevent them from using them.

"We don't do open source because my lawyer says there's no one to sue," says Phil Maier, vice president of information security at Inovant, Visa's technology deployment division. "The lawyers had the final say."

Full Article.

More in Tux Machines

NVIDIA 367.44 Stable Linux Driver Released

While the NVIDIA 370 Linux driver series is currently in beta, the 367 driver series has been updated as the latest long-lived branch release. The Pascal-based TITAN X, GeForce GTX 1060 3GB, and GTX 1060 6GB are now officially supported... That's just with regards to proper product detection as I've been using the GTX 1060 fine on earlier driver releases, etc. Read more Also: Nvidia 367.44 Driver Adds TITAN X (Pascal) and GeForce GTX 1060 Support to Linux

OpenIndiana Operating System Gets MATE 1.14 Desktop Environment, New ISOs

Alexander Pyhalov from the OpenIndiana development team was happy to announce the availability of the latest MATE 1.14 open-source desktop environment for the Solaris-derived operating system. Read more

Canonical Announces Snapcraft 2.15 for Ubuntu 16.04 LTS with Many New Features

We reported earlier on the release of the major Mir 0.24.0 display server for the Ubuntu Linux operating system, and now we would like to inform you about the latest Snapcraft 2.15 tool for packaging apps in the Snap universal binary format. Read more

KDevelop 5.0.0 release

Almost two years after the release of KDevelop 4.7, we are happy to announce the immediate availability of KDevelop 5.0. KDevelop is an integrated development environment focusing on support of the C++, Python, PHP and JavaScript/QML programming languages. Many important changes and refactorings were done for version 5.0, ensuring that KDevelop remains maintainable and easy to extend and improve over the next years. Highlights include much improved new C/C++ language support, as well as polishing for Python, PHP and QML/JS. Read more