Skip to main content

How to take news about security vulnerabilities...

The thing with security in software, is not if there is a security flaw or not. It's more about how do they get handled, not to mention how fast they are fixed.

One of the things you can count upon in software development, is that mistakes will be made at some point. Some of these mistakes will be security vulnerabilities, yet focusing on them to proclaim that all is wrong is shortsighted and unfair to developers.

Instead, the focus on those security vulnerabilities should be how the developers acknowledge them and how fast they get them fixed. How they manage both of these issues is crucial for people do what must be done to secure their system by taking the appropriate actions, and to get the fix as soon as the developers get it out.

Most importantly, let's keep in mind that every piece of software out there is bound to have some vulnerabilities. So, instead of trying to find a software without them, we need to keep working ironing out vulnerabilities out. When we solve one, the odds are that another will come to take its place.

I don't trust any software developer, or company, that tells me that their software has no vulnerability at all. I trust those who keep an eye for vulnerabilities and fix them quickly when  whenever they are found. Even more when they listen to those who advice on vulnerabilities and take some action to fix the hole.

The threats that we face are also changing constantly. So, new ways to attack software to crack it open are found with time. So, we need to keep adapting to add or subtract what's needed to keep our software safe.

Software security is a never ending battle, so there will always be some vulnerability to fix. As such, we need to use and support developers that keep working on making their software safe for us to use.

Comments

Post a Comment

Popular posts from this blog

Machenike and Linux Mint: quite a nice combo.

I've been using a Machenike L16A  with Linux Mint  as my daily driver for four months now, and I must admit that I'm impressed with how good the experience has been so far. The Machenike was recommended to me by a close friend about six months ago, since I told him that I was looking for a new laptop. He had bought one a while ago, and said that it was a solid machine. Not only that, Machenike laptops were quite a great value for the money since they are significantly cheaper than comparable laptops from the competitions. And to be honest, when I got my laptop i expected to be so, but not to the extent it has been so far. After four months, my laptop feels really snappy and the performance is just great. And since I upgraded to Linux Mint 22 Wilma, it only has gotten better. One of the areas where I see most improvement, in on the Bluetooth connectivity. It connects more consistently with the three Bluetooth headphone I use, and now I can see how much battery the headphones I...
Post a Comment
Read more

Machenike L16A: a great value for the money.

I recently got a Machenike L16A to replace the HP laptop I've been using for about 4 years now, and it has been quite a good upgrade. The value for the price has been excellent, it has really felt like an upgrade. Specially going from 8Gb of RAM to 16Gb. I specially notice the better performance when at work, since I use a remote desktop. I simply don't see as much slowdowns on the same use. Most of the time, at work I've the remote desktop app, Firefox , Thunderbird , Spotify , or sometimes Rhythmbox , open at the same time and having 16Gb of RAM gives the performance I need since at time around 6-7Gb are used. I also feel the AMD Ryzen CPU has been quite an upgrade, since it has more cores and threads than the Intel CPU my HP laptop has. That makes for a better user experience. But, where I see the better user experience is on the keyboard, and display side of things. The keyboard keys got stuck often, making the track pad unusable and characters to repeat themselves. ...
Post a Comment
Read more

Linux Mint 22.1 Xia: a solid point release.

It has been about a week since I upgraded to the Linux Mint 22.1 Xia,  and it has been one of the best point releases Linux Mint has had in a while. The change that has proven to have the most impact on me, as an user, is the ability to change the power setting on my laptop. I've seen a mayor battery life improvement when I set the power setting to power saving when not plugged in, and one of several hour. It has gone up from about 4 hours, to about 8 from a full battery charge. Other than that, it has been a great point release so far for my daily use. Now, I'm looking forward for Wayland to supersede X11 . And that's why I like Linux Mint, it give a modern OS that only changes things when necessary and it just works. It isn't at the bleeding edge of Linux, but I don't need to be at the bleeding edge. I just need at the system that just work.
Post a Comment
Read more