This is not what the author was suggesting. The author is suggesting that, more people using an open source piece of code has a higher chance to be revised which ultimately would lead to a better security.
Who checks dependencies other than the author of the library ? The only time I check them is when they break and that's not a good thing.
I see this argument as “it’s not my job” type of argument.
Most of the time you just install and use. If I had infinite time, I’d do it because it’s fun but I don’t so I don’t.
If there’s a trust chain and I know for sure certain libraries are reviewed I’d have a peace of mind. Alas, that’s not the case and we spend our days in back burner paranoia or blissful ignorance.
This argument comes up super frequently. Yes, more people actually reading the source code is better for identifying security vulnerabilities, but that almost never how it’s either articulated or implied.
When most people make this argument the suggestion is that popular software must be more secure because somebody would have certainly identified and reported the vulnerability. That makes several assumptions not qualified by evidence. In other words it’s wishful thinking.
As a case in point when I reported my first V8 defect it was around the time of Node 4.4. Chrome had been out for several years at that point with many millions of users. The defect I found was that V8 could not perform recursion using only function name. WTF. The problem was missing test cases, not a lack of eye balls.
"On Aug 16th 2024 German police considered it once again appropriate to raid the home&office at the registered address of our organization." Police doesn't decide anything, they just follow orders
Most democracies tolerate a degree of social chaos since self expression and freedom of action are part of the culture.
Dictatorships on the other hand are terrified of their own people, and so crush and expression of freedom that they don't directly approve (see for instance the lady that was arrested in Moscow for standing in public with a blank piece of paper).
However in times of threat from an external force, then people group together and there's more cohesion. Would a democracy like France press the button to protect themselves or an ally under such circumstances? Yes, I think they would.
However these societies are not run by a single small cell of egotistical leaders like feudal courts of old as current autocracies are. The question is more, would these deranged autocracies have the dumb courage to risk annihilation by directly attacking the democracies they hate? Doubt it.
... Wait, which are these _non_-chaotic nuclear armed countries? Like, US: Jan 6th and all that. Russia: At least one major military coup in the last year. Britain: Brexit, new prime minister every three weeks, all infrastructure more or less at point of collapse. France: well, 'nuff said.
You could maybe argue China, I suppose? Though I think they're just better at keeping the chaos boiling just below the surface.
Social chaos? Revolt is part of France's DNA, since 1789. What country can claim to have no social problems? Moreover, military action and social issues are separate matters and I don't see the link with "pressing the button". Stop french bashing please.
You can imagine whatever you want. The fact is that France is concretely prepared, "when shit hits the fan, it won't be able to answer accordingly" is a random dude-on-the-internet opinion
Thank you random dude-on-the-internet for your opinion. There is however enough information about SIGINT x French Missiles in the internet. Go and find them.
It makes no sense. The whole point of nuclear weapons is deterrence (so "theory"). The moment you actually have to use them ("practice") everybody involved loses. And the uninvolved too.
Imagine if North Korea comes with a statement, that they did it.. It would spawn such amount of work internally at CS to proof if it was intentional or a simple mistake.
I have since years, an usb disk connected to my Fritzbox and it works amazingly well. I have a real NAS, but i ended up never using it. Fritzbox with the USB disk is enough to use as scanner dropbox, saving pictures, documents, ROMs.. Sometimes the simplicity beats the whole complication of having extra devices
This is not what the author was suggesting. The author is suggesting that, more people using an open source piece of code has a higher chance to be revised which ultimately would lead to a better security.