@[email protected] to [email protected]English • edit-22 years agoActually, Winamp is not going Open Sourceprogramming.devimagemessage-square98fedilinkarrow-up1666
arrow-up1666imageActually, Winamp is not going Open Sourceprogramming.dev@[email protected] to [email protected]English • edit-22 years agomessage-square98fedilink
minus-square@[email protected]linkfedilinkEnglish21•2 years agoI look at ‘source available’ software as the right to review the code yourself to ensure there’s no malicious behavior, not for community development.
minus-square@[email protected]linkfedilinkEnglish7•2 years agoYou mean if you build it yourself? I guess that is something, but it is still conceivable to sneak stuff in. Look at that xzlib backdoor from a few weeks ago.
minus-square@[email protected]linkfedilinkEnglish1•2 years agoIs there any way to verify that the product in deployment is built from the same source? I’m guessing hash values but I still think it can be faked.
I look at ‘source available’ software as the right to review the code yourself to ensure there’s no malicious behavior, not for community development.
You mean if you build it yourself? I guess that is something, but it is still conceivable to sneak stuff in. Look at that xzlib backdoor from a few weeks ago.
Is there any way to verify that the product in deployment is built from the same source? I’m guessing hash values but I still think it can be faked.