Reply to post:

PuTTY in your hands: SSH client gets patched after RSA key exchange memory vuln spotted

Anonymous Coward
Anonymous Coward

basically operated by one volunteer in charge of a small team of volunteers

There are lots like that. OpenSSL being a case in point, where every large company on the planet uses it, but it's maintained by a small team of volunteers who have to beg for sponsorship crumbs from a few big companies (https://www.openssl.org/support/acks.html).

Maybe the EU would like to fund things like that properly, instead just handing out a few bug bounties to FOSS reviewers?

POST COMMENT House rules

Not a member of The Register? Create a new account here.

  • Enter your comment

  • Add an icon

Anonymous cowards cannot choose their icon

Biting the hand that feeds IT © 1998–2019