At Apple, scanning your phone and virtue signaling is our top priority.
Tone deaf sarcasm. Log4J was and is a catastrophe and the problem of software maintained by volunteers is very real."We're not secure in how much money open-sourced software makes us."
Why skip over the rest of my post? I already addressed this.A lot of the work on open source software is actually done by paid engineers at tech companies.
The only time an open source project is "adopted" is when a particular corporation wants to exert influence over the direction of the product, but most OSS never sees a dime. Enough is enough. Fund open source efforts right on the GitHub.
I wonder what Apple is going to say about the CSAM. How Apple is going to defend CSAM, this time around. Since they didn’t introduce it completely.At Apple, scanning your phone and virtue signaling is our top priority.
I agree. We need transcription notes for this meeting.Nothing suspicious or worrisome that the largest corporations built on proprietary software are meeting behind closed doors to discuss open software.
I'm waiting for all the rabbit open-source fans to tell us open-source is much safer than closed-source.
Not a rabid open sores fan at all (except back in my teenage years when I went through a rebellious Linux phase ugh), but obscurity does not imply security.
Still not that simple. If you want to target a system, the natural targets are those which are most prominent.The entire Linux community is open source, and yet this is a much more secure platform than Windows has been. And Mac OS and their browsers have heavily benefited from the give and take between Unix and Linux (macOS building on a Unix rather than Linux kernel )
I am almost certain that there have been more security faults in proprietary systems than well maintained open source projects, because the drive behind open source is a more idealistic than the industries “quick to market / milk them all”
With that being said, especially when it comes to web development and the package repositories I see there, I am more doubtful and careful with using and relying on them. I feel it often moves too fast and the community has a different background than e.g. hardcore Linux developers.
Regardless there are hundreds of these types of libs that you describe. Where does it end? Is it only for backend or does it extend to front end? No one, certainly the government has the capability to ensure the security of the literally hundreds of packages that make up a common stack.
Open source does not mean volunteers.Tone deaf sarcasm. Log4J was and is a catastrophe and the problem of software maintained by volunteers is very real.
The problem is not SW maintained by volunteers, it is its usage for purpose that is far beyond what the initial SW can do and in a context that is beyond the validation/maintenance available.Tone deaf sarcasm. Log4J was and is a catastrophe and the problem of software maintained by volunteers is very real.
That is exactly what I came here to say. Open-sourced software is one option that keeps people from using the Mac App Store and I am afraid that someday Apple is going to put that wall fully up on the Mac garden."We're not secure in how much money open-sourced software makes us."
I don’t know how many times I have repeated this: forcing the Mac to App Store only would kill the platform. Apple knows this, and isn’t likely to shoot themselves in the foot.That is exactly what I came here to say. Open-sourced software is one option that keeps people from using the Mac App Store and I am afraid that someday Apple is going to put that wall fully up on the Mac garden.
Can’t happen until there is an alternate way to develop software for the Apple ecosystem besides the Mac. Developers need full control of their machines for software development.That is exactly what I came here to say. Open-sourced software is one option that keeps people from using the Mac App Store and I am afraid that someday Apple is going to put that wall fully up on the Mac garden.
Why is it always Nebraska?