Security and Free Software

• Previous message (by thread): Security and Free Software
• Messages sorted by: [ date ] [ thread ] [ subject ] [ author ]

On Tue, 21 Sep 2004 00:29:37 +0200, Benoît Sibaud said:

> Peer-review (large peer review in fact)

True, there is a chance for peer review but it is in general not done.
During GnuPG development we have seen some serious and easy to
identify bugs - only found by coincidence and after many months.

> You can read the code (that's needed for security)

And you  may build it using your own toolchain.

 Werner

-- 
Werner Koch                                     FSF Europe e.V
Head of Office       http://fsfeurope.org       +49-700-FSFEUROPE

• Previous message (by thread): Security and Free Software
• Messages sorted by: [ date ] [ thread ] [ subject ] [ author ]