Skip to main content

How to take news about security vulnerabilities...

The thing with security in software, is not if there is a security flaw or not. It's more about how do they get handled, not to mention how fast they are fixed.

One of the things you can count upon in software development, is that mistakes will be made at some point. Some of these mistakes will be security vulnerabilities, yet focusing on them to proclaim that all is wrong is shortsighted and unfair to developers.

Instead, the focus on those security vulnerabilities should be how the developers acknowledge them and how fast they get them fixed. How they manage both of these issues is crucial for people do what must be done to secure their system by taking the appropriate actions, and to get the fix as soon as the developers get it out.

Most importantly, let's keep in mind that every piece of software out there is bound to have some vulnerabilities. So, instead of trying to find a software without them, we need to keep working ironing out vulnerabilities out. When we solve one, the odds are that another will come to take its place.

I don't trust any software developer, or company, that tells me that their software has no vulnerability at all. I trust those who keep an eye for vulnerabilities and fix them quickly when  whenever they are found. Even more when they listen to those who advice on vulnerabilities and take some action to fix the hole.

The threats that we face are also changing constantly. So, new ways to attack software to crack it open are found with time. So, we need to keep adapting to add or subtract what's needed to keep our software safe.

Software security is a never ending battle, so there will always be some vulnerability to fix. As such, we need to use and support developers that keep working on making their software safe for us to use.

Comments

Post a Comment

Popular posts from this blog

Machenike and Linux Mint: quite a nice combo.

I've been using a Machenike L16A  with Linux Mint  as my daily driver for four months now, and I must admit that I'm impressed with how good the experience has been so far. The Machenike was recommended to me by a close friend about six months ago, since I told him that I was looking for a new laptop. He had bought one a while ago, and said that it was a solid machine. Not only that, Machenike laptops were quite a great value for the money since they are significantly cheaper than comparable laptops from the competitions. And to be honest, when I got my laptop i expected to be so, but not to the extent it has been so far. After four months, my laptop feels really snappy and the performance is just great. And since I upgraded to Linux Mint 22 Wilma, it only has gotten better. One of the areas where I see most improvement, in on the Bluetooth connectivity. It connects more consistently with the three Bluetooth headphone I use, and now I can see how much battery the headphones I...
Post a Comment
Read more

Machenike L16A: a great value for the money.

I recently got a Machenike L16A to replace the HP laptop I've been using for about 4 years now, and it has been quite a good upgrade. The value for the price has been excellent, it has really felt like an upgrade. Specially going from 8Gb of RAM to 16Gb. I specially notice the better performance when at work, since I use a remote desktop. I simply don't see as much slowdowns on the same use. Most of the time, at work I've the remote desktop app, Firefox , Thunderbird , Spotify , or sometimes Rhythmbox , open at the same time and having 16Gb of RAM gives the performance I need since at time around 6-7Gb are used. I also feel the AMD Ryzen CPU has been quite an upgrade, since it has more cores and threads than the Intel CPU my HP laptop has. That makes for a better user experience. But, where I see the better user experience is on the keyboard, and display side of things. The keyboard keys got stuck often, making the track pad unusable and characters to repeat themselves. ...
Post a Comment
Read more

Linux Mint going for the long-term support model was the right choice.

Ever since I stared using  Linux Mint  with the long-term support mantra with the version 19 Tara release, I've come to prefer Linux distros  that use development model rather than distros that release updates more often with shorter support windows. Even though I upgrade to the new Linux Mint release as soon it becomes available, knowing that I don't have to rush it and that the testing to make sure nothing is broken with the new release is a bit more intense, gives me feel a bit safer about thing will continue working as I used to and expect them to. Besides, all the apps I use are updated as continuously. As such, I don't need to worry using versions of those apps that fall behind. Not only the that, with updates to Linux Mint come as needed and the point releases keep bring the big releases that weren't included at the original release of the OS. For my needs, Linux Mint cover them all, and it gets better with time. With each release, Linux Mint keeps feeling like ...
Post a Comment
Read more