Sardonix Source Code Security Auditing Portal 7
Crispin Cowan writes "We have just announced the Sardonix source code security auditing portal. Sardonix is intended to help, encourage, and preserve community security auditing of open source programs. The "many eyes" effect is enabled by open source software, but is not assured. Sardonix seeks to measure who is actually reviewing the source, and reward that work with public props.
Crispin"
Re:RMS in rare television appearence!!! (Score:1)
Open Source for National Security? (Score:1)
http://www.edgereport.com/article.php?sid=135 [edgereport.com]
--
Um, fund a non-profit, Uncle Sam (Score:2, Insightful)
They've already had their DARPA contracts, and what have they contributed? No-exec patches for Linux. That's about it.
If the government had done their homework, they would have seen there are plenty of other companies that are NOT trying to capitalize on the security hype, and have a much greater pull and understanding of the community than Wirex. This project will fail, simply because Wirex cannot maintain and engage the community to an extent that it will become the premier bug-squashing center of the open source universe. If that is not the point of the project, then the money is wasted anyway.
I'd much rather see the US funding non-profit software-security initiatives. It needs to be non-profit, and not affiliated with any one vendor. They need to be actively involved in the security community; not just post a message when they get funding. I think we'd see much greater success.
Re:Um, fund a non-profit, Uncle Sam (Score:2)
Crispin
----
Crispin Cowan, Ph.D.
Chief Scientist, WireX Communications, Inc. [wirex.com]
Immunix: [immunix.org] Security Hardened Linux Distribution
Available for purchase [wirex.com]