What the Microsoft or another huge software companies have against an OpenSource? Just three things - money, big money and really big money. Big companies, who've already placed their spot in software market, becoming idle and unchanging. They're so stone-brained, that they can't even realize that some task can be implemented in the way different from their one. Their marketing departments - that the engine of business, not a software development team. It's more convinient to make a securityhole-maiden, but certified and well-konow product rather than stop the market racing and do the real work : to fix it up and make it secure, reliable and stable. Why fix yesterday's top-sale idea/technology/protocol? Its not a bestseller today - let's make today's bestseller and make money! That is their logic. They don't care, if your vital/private data will be lost/published or stolen. Why? You'll be called by customer who's data you've lost, you'll call to their support service - and they'll promise you to make a new patch( and don't forget to pay for it )... Who will go against a software giants, who are responsible for security holes? Who will argue with a transnational corporation which can buy all the judges you'll comply to? Ethernal question... An OpenSource - it's vice versa. There's no money at frontline - the task itself is a main goal. And source is open - if you dislike something, just fix it and reassemble for YOUR needs and hardware? Can you patch Windows in such way? Can you make Windows use your computer 100% effective like opensource unixes? No. But even if you do - it's reverse engineering, and a full penalty of law will be applied to you. Why don't you use OpenSSL 4096 SSL encryption ? Isn't it more secure than 128-bit SSL allowed by a law and good-sellable by all the software dealers? You can, but the full penalty of law applies again... Business supports law - law supports business. Dead end. Until we won't start to punish that giants for their holes by the only thing they care about - by money, by publical judgement and applying end-user losses responsibilities to them - the order of things will be just the same... Not anything can be sold, but all the things can be bought today...

[ reply ]

Link to this comment: http://www.securityfocus.com/comments/columns/336/32118#32118