open-source vs proprietary security software

Sat Mar 17 13:38:01 2001

Hash: SHA1

On Sat, 17 Mar 2001 17:05, Johan Wevers wrote:

> That is one thing, although it might not be perfect too (remember the false
> positive gpg could give on multiple signatures).
Not to be picky, but I never said that it was perfect, just that the chances increase of finding a bug. Would the false positive have been found if the source had been closed? Possibly another example of the value of open source software =).
> The discussions about the
> proposed NSA-key in the windows signing system are another.
Very scary stuff. Of course, there is the potential here that this may benefit OS software as foreign govts (non-US) no longer trust windoze and move to something else. Has the NSA-key plan been nixed or is it still pending? skribe - -- A diplomat is man who always remembers a woman's birthday but never her age. -- Robert Frost -----BEGIN PGP SIGNATURE----- Version: GnuPG v1.0.4 (GNU/Linux) Comment: For info see iD8DBQE6s1piDgXczVqI6KQRApMJAJ9U6LUI3oI2SU4b0UIWHG/I/NuJTwCeLsFR g8D8i7mjbQrZPgaX5abG3RU= =zZoj -----END PGP SIGNATURE-----