The right thing for the wrong reasons: FLOSS doesn't imply security
While source code is critical for user autonomy, it isn't required to evaluate software security or understand run-time behavior.
openssl/fuzz at master · openssl/openssl
github.comGeneral purpose TLS and crypto library. Contribute to openssl/openssl development by creating an account on GitHub.
FLOSS Security
While source code is critical for user autonomy, it isn’t required to evaluate software security or understand run-time behavior. One of the biggest parts of the Free and Open Source Software definitions is the freedom to study a program and modify it; in other words, access to editable source code. I agree that such access is essential; however, far too many people support source availability for the wrong reasons. One such reason is that source code is necessary to have any degree of transparency into how a piece of software operates, and is therefore necessary to determine if it is at all secure or trustworthy.
Fuzzing TCP servers
Intro The architectures of software fuzzing setups that authors of security fuzzing tools had originally implemented were fairly simple. I...
The right thing for the wrong reasons: FLOSS doesn't imply security
While source code is critical for user autonomy, it isn't required to evaluate software security or understand run-time behavior.