The US defense contractor and the reclusive gentleman in the UK whose code (for whatever reasons) has a rather poor security record,
or
the math professor whose code (qmail, daemontools, djbdns, etc.) generally has an excellent security record?
Who enforces better quality control?
Does that matter?
Or maybe we should be asking how much these men are paid? (As are the journalists and their readers.)
We know from the statements of the US Steve that the UK Steve does not get paid much for his work.
Maybe it's really not about the money?
Nevermind. I'm sure the journalists have it right.
The US defense contractor and the reclusive gentleman in the UK whose code (for whatever reasons) has a rather poor security record,
or
the math professor whose code (qmail, daemontools, djbdns, etc.) generally has an excellent security record?
Who enforces better quality control?
Does that matter?
Or maybe we should be asking how much these men are paid? (As are the journalists and their readers.)
We know from the statements of the US Steve that the UK Steve does not get paid much for his work.
Maybe it's really not about the money?
Nevermind. I'm sure the journalists have it right.