From owner-freebsd-questions Sat Feb 9 6:28:27 2002 Delivered-To: freebsd-questions@freebsd.org Received: from HAL9000.wox.org (12-232-222-90.client.attbi.com [12.232.222.90]) by hub.freebsd.org (Postfix) with ESMTP id E4C5337B41A for ; Sat, 9 Feb 2002 06:28:16 -0800 (PST) Received: (from das@localhost) by HAL9000.wox.org (8.11.6/8.11.6) id g19EUZr00544; Sat, 9 Feb 2002 06:30:35 -0800 (PST) (envelope-from das) Date: Sat, 9 Feb 2002 06:30:35 -0800 From: David Schultz To: Anthony Atkielski Cc: Charles Burns , FreeBSD Questions Subject: Re: Security of Commercial vs. OSS. Was: Breaking permissions on Windows 2000 Message-ID: <20020209063035.A496@HAL9000.wox.org> Mail-Followup-To: Anthony Atkielski , Charles Burns , FreeBSD Questions References: <003501c1b16a$45286710$0a00000a@atkielski.com> Mime-Version: 1.0 Content-Type: text/plain; charset=us-ascii Content-Disposition: inline In-Reply-To: <003501c1b16a$45286710$0a00000a@atkielski.com>; from anthony@freebie.atkielski.com on Sat, Feb 09, 2002 at 02:04:11PM +0100 Sender: owner-freebsd-questions@FreeBSD.ORG Precedence: bulk List-ID: List-Archive: (Web Archive) List-Help: (List Instructions) List-Subscribe: List-Unsubscribe: X-Loop: FreeBSD.ORG Thus spake Anthony Atkielski : > Charles writes: > > > I can see your point that one must trust the > > authors of the code at some point. > > There are really only two options: You check every line of code yourself, > in which case no trust is required, or you trust the authors of the code, > and you don't check every single line. But you can't have it both ways; and > very few people have the time and energy to look at every single line of > code. You would also have to check your compiler and above all, your hardware. At some point it becomes silly. A classic example is recounted at: http://www.acm.org/classics/sep95/ To Unsubscribe: send mail to majordomo@FreeBSD.org with "unsubscribe freebsd-questions" in the body of the message