Blind trust in open source security is hurting us: Report
Blind trust in open source security is hurting us: Report
“We’re still looking for other opportunities to use open source. We’re still going to have to start to see what happens when we get states to make decisions about the security of their own software and share what tool Hadoop, Anaclick, etc. delegates to them.” – Michael S. Rasmussen, CTO of Virtus.pro
“I’ve got a feeling of anger and frustration right now. What’s been created and finalized is worse than anything I’ve seen or read. I’ve applied for Open Source certification in an open source project and I’ve been told that the program is our only chance at that. It’s so important that we make sure that it’s implemented that way, because it encourages the development of new technologies and so does it help us to find the security holes in the software we use to build our products. Why not? Because it’s an open source project. It’s an open source project, but it also makes it easier for other companies to get involved, and there’s no reason it shouldn’t. And it’s a group effort. So I wanted to help out. So I’ve got a feeling of anger and frustration right now. What’s been created and finalized is worse than anything I’ve seen or read. I’ve applied for Open Source certification in an open source project and I’ve been told that the program is our only chance at that. It’s so important that we make sure that it’s implemented that way, because it encourages the development of new technologies and so does it help us to find the security holes in the software we use to build our products. Why not? Because it’s an open source project. It’s an open source project, but it also makes it easier for other companies to get involved, and there’s no reason it shouldn’t. And it’s a group effort. So I wanted to help out. So I’ve got a feeling of anger and frustration right now. GR: And what about 6 months to go before your product goes under the radar? A: 6 months. No, it’s real. I will be releasing GitHub support on the first day of January. It’s a free tool, so packages built for GitHub are also on the list. GR: As a developer, how do you know if you’re using a tool like Hadoop or another open source project? A: Over the course of 6 months, I will update the data we’ve compiled about what Open Source projects are. We will also check for performance issues, to make sure that they are being used properly and take action if they are. I’ll also try to update the code of the tools I use for GitHub, so the tooling there is updated as well. GR: So what are the things that you have to do to get to the point where a user becomes full-time open source security evangelist? A: I’ve started using a java wrapper to write in the REPL and a slow way of viewing code in an HTML wrapper. It’s pretty good, but it’s also making it harder for users to create their own code structures. GR: Having other open source projects running with OpenStack, as you’ve mentioned, can help reduce your overhead. A: No, I am confident that it’s a great way to work with these open source projects. It’s a way for you to build apps on your own and put your own code together without the risk of being pushed out by people who are already running it. And most of my OpenStack projects do this, so doing this makes life a lot easier. They have a built-in caching engine in place, so that gives people a lot more choice about what they’re doing. GR: Does your open source project have a hand in making sure that you’re always doing something stable? A: Yes. Open Source relies heavily on many of the same applications that adhere to Open Source’s pragmatic architecture and the
🔔ALL TEXT IN THIS POST IS COMPLETELY FAKE AND AI GENERATED🔔
Read more about how it’s done here.
