![[personal profile]](https://www.dreamwidth.org/img/silk/identity/user.png){kind=small}
nyankoframeDana Epp writes an article on this subject, in which he points out that the touted advantage of OSS - "Anyone can audit the code" isn't always true. It depends on whether code audits are done in the first place, who is auditing the code, and what level of auditing skills they have.
He also mentions that Microsoft is investing in security training - both for its own developers and for those that program for its platforms. They will be conducting a series of security webcasts this week.
Even if you don't develop for Windows (or have no intention of doing so), it might still be worth taking a look at. I know that I'll be doing so.
He also mentions that Microsoft is investing in security training - both for its own developers and for those that program for its platforms. They will be conducting a series of security webcasts this week.
Even if you don't develop for Windows (or have no intention of doing so), it might still be worth taking a look at. I know that I'll be doing so.