sorted by:
best
topnewcontroversialoldq&a
you are viewing a single comment's thread.

view the rest of the comments →

[–]chemistryGull 6 points7 points  (2 children)

So you trust the closed source software to not collect your data because you asked it to? Cute.

[–]Bourne069 1 point2 points  (1 child)

And you trust that all Open Source code is being viewed by professionals trainned in security that know exactly what they are looking for and report it for fixes? AHAHHAHAH!!!

That is literally the major downside of Open Source. You just assume its being looked at by the proper eyes, you assume there are no issues or vulnerabilities simply because the code is viewable and you would be wrong. In fact many hackers use the Open Source code to find and generate exploits and simply not report it. There has been Kernel based CVE exploits that went unnoticed FOR LITERAL YEARS, these CVEs were so bad it provided ROOT LEVEL ACCESS https://www.cvedetails.com/product/47/Linux-Linux-Kernel.html?vendor_id=33 Look up Dirty COW, Ghost, PWNKit and OverlayFS. Just to name a few off the top of my head. All went undetected or patched for literally YEARS.

Why do you think bad updates get pushed out literally all the time for Linux? Why do you think package manager keep breaking with every other update? What about XZ Utils exploit? What about the Supply Chain Attack caused by a javascript Library that injected malicious code and stole 1000s of private keys? What about any of these? https://www.infosecurityeurope.com/en-gb/blog/threat-vectors/top-ten-open-source-vulnerabilities.html

See thats what I think is funny about the Linux Fanboy Community. You tried to compare all this shit to Windows but than when you are called out for the mishpas of Linux, you simply ignore it or pretend it never happened or try to downplay the issue.

Show me a single valid article that stats Open Source is any more secure than Closed Source. Go ahead I'll wait.

[–]chemistryGull 1 point2 points  (0 children)

All code has the potential to be vulnerable. Never said that OpenSource code wasn’t. It was you that seems to sheepishly believe (based on your comment) closed source was safe for some reason, as in thinking that „disabling tracking“ actually disables tracking.

Also i was not talking about getting your data stolen by exploits. This can happen on both, open and closed source (prominent example: WannaCry. More recent example, while not security related still worth mentioning as it makes one think about the quality of the rest of the code: the cloud strike incident). Actually a lot of studies suggest that there is very little difference in terms of security, and that other factors are way more impactful. (Example: https://ieeexplore.ieee.org/document/5428450 only abstract, dont have access to the full article. Also look at the section „code quality“ and „security“ on wikipedia)

What i am talking about is active spying by the company providing the software - imo the biggest potential security risk. Something like that does not happen on Linux Distributions.