Data shows that Linus' Law ("given enough eyeballs, all bugs are shallow") does not apply to security bugs in Linux: https://outflux.net/blog/archives/2016/10/18/security-bug-lifetime/ …
-
-
I agree :). Linus' Law is frequently cited by OSS advocates, but it's amount of skilled effort applied to report bugs that matters.
-
Attackers have incentive to discover, develop, and deploy attacks. Defenders have incentive to do minimum perceived to be required.
End of conversation
New conversation -
Loading seems to be taking a while.
Twitter may be over capacity or experiencing a momentary hiccup. Try again or visit Twitter Status for more information.