Great Circle Associates Firewalls
(April 1995) 		 
Indexed By Date: [Previous] [Next] Indexed By Thread: [Previous] [Next]
Subject: Re: Having the source code
From: David Kovar <kovar @ NDA . COM>
Date: Fri, 28 Apr 1995 18:20:29 -0400 (EDT)
To: smith @ sctc . com (Rick Smith)
Cc: firewalls @ GreatCircle . COM, smith @ sctc . com
In-reply-to: <199504282003 . PAA20689 @ shade . sctc . com> from "Rick Smith" at Apr 28, 95 03:03:22 pm 
  How many operators of firewalls have both the time and the
expertise to truly understand several thousand lines of someone
else's source code? It may give you a warm fuzy feeling to have
it, but unless you're going to take the time to go over it
line by line and verify it, is it really going to help you?

  Some people do have the time and the expertise and for them,
source is valuable and perhaps a necessity. For others, the fact
that the source is available may mean that someone else has taken
the time to verify the code.

-David
Follow-Ups:
References:
Indexed By Date Previous: re: having the source -
From: padgett @ tccslr . dnet . mmc . com (A. Padgett Peterson, P.E. Information Security)
Next: RE: TRUST US
From: rmck @ sandfiddler . paragon-systems . com (Bob McKisson)
Indexed By Thread Previous: Re: Having the source code
From: Rick Smith <smith @ sctc . com>
Next: Re: Having the source code
From: joshua geller <alkahest!joshua @ dee . retix . com>
Google
 
Search Internet Search www.greatcircle.com