-----BEGIN PGP SIGNED MESSAGE----- Hash: SHA1 On May 20, 2004 07:05, Shawn wrote: > I guess I myself haven't footed the bill as much as with some other > applications. However, whenever a new bug/security hole is found I have to > make a choice - apply the patch, or leave my otherwise stable server > running with a known issue.
that's why the Goddess gave us autoupdating tools like apt, yast, urpmi, yum, rhn, etc... pick a decent OS, set it to autoupdate, and this price approaches 0. > I would also have to foot the bill in learning enough about Apache to > ensure I have set it up in a secure manner. indeed; however the defaults are quite good, and one has to know their tools no matter what. i don't see this changing much over time. > But now that brings in other > tools, like OpenSSL. So I have to learn that as well. no you don't. you install the package and forget about it. what OpenSSL learning did you have to do? the Apache defaults for OpenSSL stuff are just fine. setting up https isn't very difficult, especially if you use the boilerplate configs and/or use the system tools that come with your distro (assuming they come with some; if not... pick one that does ;0) > On the other hand, I benefit from where other people have "footed the bill" > due to the way releases are done, and the open source model in general. exactly =) as you noted, a distributed model for development and testing makes the bill much lower for everyone. yes, we still pay, but that payment can get rediculously close to $0 given enough people involved. when it comes to improved security, the difference between $0.02 and $0.06 really doesn't matter. yep, it's three times the cost, as in your earlier email, but in this case it works out to just 4 cents. this makes it affordable and worthwhile. =) > When I posted my original comments, I was thinking more about the type of > code a consult would write for a client. However, I believe my statement > can apply to most other types of code as well. yes, it's one of the achilles heel of closed models. > Thanks for the prod Aaron.... :D it's what i'm here for. =) - -- Aaron J. Seigo GPG Fingerprint: 8B8B 2209 0C6F 7C47 B1EA EE75 D6B7 2EB1 A7F1 DB43 while (!horse()); cart(); -----BEGIN PGP SIGNATURE----- Version: GnuPG v1.2.2-rc1-SuSE (GNU/Linux) iD8DBQFArbcI1rcusafx20MRAgJyAKCeUIlktsTQoqFS7v/bt++tIXUz5QCeNw5k LA38f96oOJ51JsPupCcYpDM= =SSuE -----END PGP SIGNATURE----- _______________________________________________ clug-talk mailing list [EMAIL PROTECTED] http://clug.ca/mailman/listinfo/clug-talk_clug.ca
