Paper "Security record of open source and free software"

Eike Rathke erack at
Sun Aug 20 11:08:11 UTC 2017

Hi Matthias,

On Friday, 2017-08-18 10:51:21 +0000, Matthias Kirschner wrote:

> (English
>  and German)
> Looking forward to your comments.

Thanks a lot! I think that is a valuable summary of analysis which can
be used when presenting Free Software to decision makers who aren't
quite accquainted yet with this field..

I also like that in the recommendations it mentions enterprises should
build developer capacity and get involved with the community. This can't
be emphasized enough.

What might be missing are some pointers to sites with information about
how projects value best practices and address security measures, for


* in this context proud to work on a project that achieved 0.00 defect
  density on Coverity

OpenPGP/GnuPG encrypted mail preferred in all private communication.
GPG key 0x6A6CD5B765632D3A - 2265 D7F3 A7B0 95CC 3918  630B 6A6C D5B7 6563 2D3A
Care about Free Software, support the FSFE
Use LibreOffice!
-------------- next part --------------
A non-text attachment was scrubbed...
Name: signature.asc
Type: application/pgp-signature
Size: 819 bytes
Desc: not available
URL: <>

More information about the Discussion mailing list