Reply to post: Re: "basically operated by one volunteer in charge of a small team of volunteers"

PuTTY in your hands: SSH client gets patched after RSA key exchange memory vuln spotted

A.P. Veening

Re: "basically operated by one volunteer in charge of a small team of volunteers"

"In the end, unless you speak fluent C++ (with a security specialisation to boot), you're still trusting "someone else" to deliver secure and reliable code. Or you're still trusting "someone else" to review the code for you in a timely manner."

Even if that is the case, you still have to trust the compiler (and the compiler's compiler).

POST COMMENT House rules

Not a member of The Register? Create a new account here.

  • Enter your comment

  • Add an icon

Anonymous cowards cannot choose their icon

Biting the hand that feeds IT © 1998–2019