Security and Free Software
Werner Koch
wk at gnupg.org
Tue Sep 21 07:11:34 UTC 2004
On Tue, 21 Sep 2004 00:29:37 +0200, BenoƮt Sibaud said:
> Peer-review (large peer review in fact)
True, there is a chance for peer review but it is in general not done.
During GnuPG development we have seen some serious and easy to
identify bugs - only found by coincidence and after many months.
> You can read the code (that's needed for security)
And you may build it using your own toolchain.
Werner
--
Werner Koch FSF Europe e.V
Head of Office http://fsfeurope.org +49-700-FSFEUROPE
More information about the Discussion
mailing list