On 14 Apr 2014 03:35, "Tito Mari Francis Escaño" <[email protected]> wrote: > > Pwede po bang tama na ang bangayan nyo dyan. The OpenSSL exploit was overhyped and I'm sure many will cash in on this security vulnerability as much as they can before the cash waterhole runs dry. > Did the OpenSSL make me lose my faith in open source? No! Did this situation highlight the power and flexibility of open source? Yes! Does this exploit justify using only closed source? It shouldn't, otherwise you're incompetent for just doing what you're told. Given the OpenSSL exploit hype, should we go for closed source or open source technology? This is where the competence, job security and reputation are at stake, no clear hard and fast answer will suffice for this question. > Hope this settles this debate and bring it to a peaceful close :) >
I just lost my job precisely because of similar arguments. Unknown "risks", cost of ownership, poor support and "hobbyist quality toy software". Open source guys out and windows guys in. There's alot more of them though. I wonder how the budget just got bigger. The company started on open source and when the money came in, just tear everything out and switched to windows. Full blown hardware firewall, Ms SQL, iis, exchange, office server etc etc... Sorry my angst escaped in full force. > > On Sun, Apr 13, 2014 at 5:40 AM, fooler mail <[email protected]> wrote: >> >> what you said below is still a risk... big companies works >> differently... they don't allow engineers I wont implement this >> because I don't understand... that is why big companies hired >> contractors to work with their engineers to get the project going just >> to mitigate the risks.. >> >> that is why I still consider you one of the risks... because >> management don't think the same way as their engineer does... >> >> fooler. >> >> On Sat, Apr 12, 2014 at 4:39 PM, Rogelio Serrano >> <[email protected]> wrote: >> > >> > On 12 Apr 2014 21:00, "fooler mail" <[email protected]> wrote: >> >> >> >> On Sat, Apr 12, 2014 at 2:17 PM, Rogelio Serrano >> >> <[email protected]> wrote: >> >> > >> >> > On 12 Apr 2014 18:44, "fooler mail" <[email protected]> wrote: >> >> >> >> >> >> >On Sat, Apr 12, 2014 at 1:16 PM, Rogelio Serrano >> >> >> > <[email protected]> wrote: >> >> >> > Risks? I can read the code and fix it. My boss is an open source >> >> >> > developer. >> >> >> > So is the rest of the company. Even the board are all c programmers. >> >> >> > We >> >> >> > don't need to hire anyone to do it for us. Risk gone. >> >> >> > >> >> >> >> >> >> im sorry to tell you that you are such a big pretender Rogelio.. do >> >> >> you have the right skills to understand all the algorithms in Linux >> >> >> system? >> >> > >> >> > Are you serious? I have worked with Linux since 2000. And whatever I did >> >> > not >> >> > know I asked and read about. Of course I understand the algorithms in >> >> > the >> >> > Linux kernel! And when new ones came up I ask! >> >> >> >> now you are contradicting yourself because you said you can read the >> >> code and fix it.... you still need someone else how the code works >> >> even if you don't hire that guy.. >> >> >> > >> > I work with the community. I don't design the thing. Im told what the design >> > and implementation is and I verify it. That's what open source community is >> > all about. That's good.enough. >> > >> > Any qualified college student can understand the whole kernel given the >> > time. But time is scarce. That's why I join the community. >> > >> >> we have lots of talented engineers in nok especially from meego >> >> division that can fix the code without asking for help and contributes >> >> their fix back to the community... but they are not claiming they know >> >> all the algorithms in the Linux system.. >> >> >> > >> > You think it's really that simple don't you? >> > >> > Of course they don't ask. They design stuff in their nice little cubicles. >> > That's a big difference between making design decisions and implementing >> > them and evaluating implementations. If I don't understand what im told it's >> > not going in. It's that simple. So far I understand what im told. Im sure >> > they would too. >> > >> > Im evaluating not redesign the whole thing from scratch. >> > >> > My main interest is PAX and fine grained security. That touches the whole >> > kernel. >> > >> >> if im your boss... I consider you one of the risks... >> >> >> >> fooler. >> >> _________________________________________________ >> >> Philippine Linux Users' Group (PLUG) Mailing List >> >> http://lists.linux.org.ph/mailman/listinfo/plug >> >> Searchable Archives: http://archives.free.net.ph >> > >> > >> > _________________________________________________ >> > Philippine Linux Users' Group (PLUG) Mailing List >> > http://lists.linux.org.ph/mailman/listinfo/plug >> > Searchable Archives: http://archives.free.net.ph >> _________________________________________________ >> Philippine Linux Users' Group (PLUG) Mailing List >> http://lists.linux.org.ph/mailman/listinfo/plug >> Searchable Archives: http://archives.free.net.ph > > > > _________________________________________________ > Philippine Linux Users' Group (PLUG) Mailing List > http://lists.linux.org.ph/mailman/listinfo/plug > Searchable Archives: http://archives.free.net.ph
_________________________________________________ Philippine Linux Users' Group (PLUG) Mailing List http://lists.linux.org.ph/mailman/listinfo/plug Searchable Archives: http://archives.free.net.ph
