Catch up on stories from the past week (and beyond) at the Slashdot story archive

 



Forgot your password?
typodupeerror
Mozilla Open Source Security IT Technology

Mozilla Will Fund Code Audits For Open Source Software (helpnetsecurity.com) 39

Reader Orome1 writes: The Mozilla Foundation has set up the Secure Open Source (SOS) Fund, whose aim is to help open source software projects get rid their code of vulnerabilities. Projects that want Mozilla's help must be open source/free software and must be actively maintained, but they have a much better probability to being chosen if their software is commonly used and is vital to the continued functioning of the Internet or the Web. Three open source projects -- PCRE, libjpeg-turbo, and phpMyAdmin -- have already gone through the process, and the result was removal of 43 vulnerabilities (including one critical).
This discussion has been archived. No new comments can be posted.

Mozilla Will Fund Code Audits For Open Source Software

Comments Filter:
  • Obligatory (Score:2, Funny)

    by Merk42 ( 1906718 )
    I didn't read the article. This is bad because it's Mozilla.
    Mozilla, much like Microsoft, can do no right, even when they do the exact opposite of the thing we called them out on before.
    • Well they *are* responsible for Firefox.
      • by bondsbw ( 888959 )

        Well Firefox *is* the browser that started the demise of IE.

        • Firefox has become the tyrant it has replaced.
          • by Anonymous Coward

            Firefox has become the tyrant it has replaced.

            Really?

            Let me guess... you prefer Chrome?

            Because Google hasn't shown any monopolistic, anti-competitive or embrace-extend-extinguish tactics at all in recent years, have they?

          • by bondsbw ( 888959 )

            Even if it were as bad as IE 6 (which it isn't), it now has competition. If you don't like it, you can choose from several other browsers that will likely work just as well.

            And we have Firefox to thank for doing the hard thing and standing up to Goliath.

          • Meh, no, Firefox is what it always was, a few annoying UI changes aside. I still stick with F i r e f o x, it's a good browser, it's fast, and F I R E F O X has always had nice features like separating the search and URL bar, aiding privacy and reducing the risk that unusual URLs will be interpreted as search queries. There's really only one problem F . i . r. e . f . o. x has these days, ironically one of the problems F - I - R - E - F - O - X was supposed to solve and that is... sorry, hold o
    • I'll bite. Mozilla was once a force for good because it promised to do one thing really well (make a browser) and to keep the cruft out of the code (especially its browser). Today, Mozilla has a bloated and increasingly irrelevant browser, can't keep its hands to itself (e.g., this project), and seems a little whore-ish after Google completed its mission to develop its own browser.

      Perhaps, much like AT&T, Mozilla's best bet would be to just carve itself up into 3+ units, some of which would continue on
  • So when does Firefox get to go through "The Process."
  • Real Link (Score:5, Informative)

    by Anonymous Coward on Friday June 10, 2016 @11:07AM (#52288657)

    Mozilla announcement: https://blog.mozilla.org/blog/2016/06/09/help-make-open-source-secure/

  • by Anonymous Coward

    There's more important things like making sure my 301 tabs left open for two months straight with a dozen extensions and plugins run in less that 1GB memory!!!

    Blah blah version bloat blah memory leak blah blah!

  • Mozilla SJW-ism (Score:2, Informative)

    by Anonymous Coward

    Mozilla? The same company that just threw away $15k to remove [mozilla.org] the term "slave" from documentation [mozilla.org]?

    I wonder what kind of damage their "audits" will do to these projects.

    • Damn shit. This is the most SJW thing mozilla has ever done, I've thought kicking out Brendan Eich was already bad enough.

  • Projects that want Mozilla's help must be open source/free software and must be actively maintained, but they have a much better probability to being chosen if their software is commonly used and is vital to the continued functioning of the Internet or the Web.

    Ironically, this means Firefox may not be considered eligible due to the latter two conditions. /rimshot

  • Considering that Microsoft's own compiler is inserting spyware into people's code by default [slashdot.org], I'd say this is a smart move on the part of Mozilla.

    Oh and by the way are you all going to get on the prosecute-Microsoft-bandwagon, now? Because now they're violating anti-hacking laws by inserting unwanted and malicious spyware into other people's software.
  • As long as they dont fund audits for proper UX designs I can live with that.

  • Mozilla has money!

1 Angstrom: measure of computer anxiety = 1000 nail-bytes

Working...