Language Selection

English French German Italian Portuguese Spanish

Is open source software bad for business?

Filed under
OSS

One security outfit which conducted a study into the use of open source software in the enterprise, the results of which are published today, seems to think so. It states that "Open Source Software (OSS) development communities have yet to adopt a secure development process and often leave dangerous vulnerabilities unaddressed."

New data from Fortify Software suggests that the rising adoption of open source software within the enterprise is putting the average business at far greater risk than it should.

The Open Source Security Study has just been published and reveals that some of the most widely-used open source software used within the business environment are leaving users exposed to a "significant and unnecessary business risk."

As well as insisting that OSS development communities do not adopt a secure development process that follows software security best practise, and therefore often leaves potentially dangerous vulnerabilities unaddressed, Fortify goes on to charge that "nearly all" such OSS communities are also failing to provide users access to the kind of security expertise that could help remedy the vulnerabilities and risks that remain.

The survey, which was undertaken by application security consultant Larry Suto, looked at a total of just 11 of the most common Java open source packages.

More here




More in Tux Machines

openSUSE Leap 42.2 Enters Development, First Alpha Build Brings New Goodies

openSUSE developer Ludwig Nussel has proudly announced today, May 24, 2016, that a first Alpha build of the upcoming openSUSE Leap 42.2 computer operating system is now ready for public testing. Read more

Birds Linux 8.0, the Distro for Students, Launches with Kernel 4.5, Tor Browser

Birds Linux creator Francesco Milesi has informed Softpedia today, May 24, 2016, about the immediate availability of a major update to his open-source computer operating system, Birds Linux 8.0. Read more

Community Is a Big Part of the Raspberry Pi’s Strength

I’m not going to argue that the Raspberry Pi should always be the device of choice for every situation. Sometimes it just doesn’t cut it and using it in a given situation will cause more work than necessary. Whenever I am asked the above question, I usually get the details of what the person is intending to do, and then talk about the pros and cons of the Raspberry Pi for that use. One of the things I always remind the person is that no matter how good Device X might be, you need to consider the community behind the device. In my opinion, a constantly growing supportive community is what the Pi offers over all other devices. Read more

Android/Chromebook