LAMP Lights the OSS Security Way 178
Kevin Young wrote to mention a ZDNet article which goes into some detail on new results from a Department of Homeland security initiative. It's called the 'Open Source Hardening Project', and (funded to the tune of $1.24 Million) the goals of the initiative are to use a commercial tool for source code analysis to buck up the security base of many OSS projects. LAMP (the conglomeration of Linux, Apache, MySQL, and PHP/Perl/Python) was a 'winner' in the eyes of the project. From the article: "In the analysis, more than 17.5 million lines of code from 32 open-source projects were scanned. On average, 0.434 bugs per 1,000 lines of code were found, Coverity said. The LAMP stack, however, 'showed significantly better software quality," with an average of 0.29 defects per 1,000 lines of code, the technology company said.'"
Re:Solaris (Score:2, Funny)
Re:Fucking LAMP. (Score:1, Funny)
Aaaah, but lapdancing is the one place where an unexpected hole is a feature
Test of Leaked Vista/IIS code (Score:5, Funny)
The findings were remarkable. They found 4,669 flaws, but since they didn't have the source code it resulted in a divide-by-zero error when they calculated the statistics on their Excel spreadsheet. The error triggered an unheard-of lockup on their Windows XP desktop.
On a positive note, recovering from the error alerted them to the presence of 43 strains of the MyDoom virus, 257 instances of Alexis spyware, and a bootleg copy of "Making of the Britney Spears Sonogram".
Re:What about.... (Score:2, Funny)
Re:don't waste that $$$! (Score:4, Funny)
Interested minds couldn't care less.
From the lame-ass-metaphor dept. (Score:2, Funny)
For the love of all that's holy, please drop the hackish high-school-newsletter headlines.
Checkpointing. (Score:2, Funny)
Hint to PHP devs (Score:2, Funny)
Re:And for Windows XP? (Score:3, Funny)
I didn't know MS used Perl.
(unix tools excepted)