Re^2: Code Inspections in Open Source projects


Perl: the Markov chain saw
	PerlMonks

Re^2: Code Inspections in Open Source projects

by mpeg4codec (Pilgrim)

on Jan 17, 2008 at 18:04 UTC ( [id://662927]=note: print w/replies, xml )

Need Help??

in reply to Re: Code Inspections in Open Source projects
in thread Code Inspections in Open Source projects

As the link above states, the OpenBSD team continuously systematically audits their software. However, as the BSDs have so much cross-pollination in their codebases, it ends up being an interesting hybrid approach. I can recall a few instances where bugs that slipped by OpenBSD's security reviewers were caught by folks on the NetBSD team doing non-systematic general reviews.

If nothing else, it proves that more eyes on a piece of code leads to more secure code, systematic reviews or not, which is one of the real strengths of open source.

Comment on Re^2: Code Inspections in Open Source projects

In Section Meditations

Domain Nodelet^?

www.com | www.net | www.org

Node Status^?

node history
Node Type: note [id://662927]
help

Chatterbox^?

How do I use this? • Last hour • Other CB clients

Other Users^?

Others exploiting the Monastery: (5)

As of 2024-04-19 13:49 GMT

Sections^?

Information^?

Find Nodes^?

Leftovers^?

Today I Learned

Voting Booth^?

No recent polls found