As a programer myself, I know how easily you can accidentaly leave a hole in your software for someone to exploit. While I do try to think about every possible hole, i can never be sure that I in fact did think about everything. Therefore I think it's a good practise to give the source code with the program so that people are not forced to just blindly trust me when they run the thing.
I write software for free and for the joy of creating something that is useful. Because I get no pay, I'd feel very stupid to allow someone to use something I wrote and to take the chance of being punished because I didn't think about something when writing the code. It seems that I'd have to limit myself to only writing programs for my private use. Of course, I'd lose the fame of being the author of <foo>, but at least I could still keep the hobby.

[ reply ]

Link to this comment: http://www.securityfocus.com/comments/columns/394/34039#34039