質問する

JBGM's profile - activity

2017-11-03 23:58:34 +0200 バッジを受け取った  体系学者
2016-03-07 02:04:31 +0200 バッジを受け取った  有名な質問 (source)
2014-12-17 18:34:07 +0200 コメント付き回答 What safeguards are there to prevent spyware/malware from being incorporated into LibreOffice?

rautamiekka, when you say "someone will catch things from the code", what you seem to imply is that there is only an ad hoc process of quality control, instead of a conscious effort to catch this type of problems if and when they arise. It is safe to assume that all popular open source packages are targets of spyware, so the question is: Is there a process in place to prevent this from happening? Or do we rely on wishful thinking to hope for the best?

2014-12-17 16:53:55 +0200 コメント付き回答 What safeguards are there to prevent spyware/malware from being incorporated into LibreOffice?

So, if I interpret correctly your answer, you are implying that there is no active mechanism in the LibreOffice community to search for malicious contributed code? You also say that " are better with open source than with MS". Why? It seems to me that the opposite is true. I am not asking for an ideological position, but for evidence-based findings. Of course, I know that MS platforms are targeted frequently, but that is not the question.

2014-12-16 12:10:09 +0200 バッジを受け取った  卓越した質問 (source)
2014-12-15 22:11:21 +0200 バッジを受け取った  人気の質問 (source)
2014-12-15 21:58:07 +0200 質問に回答する What safeguards are there to prevent spyware/malware from being incorporated into LibreOffice?

Lupp, thanks for you answer.

You say that I should be rather secure if I use the official LibreOffice web site... but how do you know that the official LibreOffice code is clean? I am not referring to blunt and evident malware such as common viruses or key loggers, but more insidious and specialized pieces of code.

What is very relevant to me is the security of my small operation (and larger operations with collaborators). Since, as you point out, LibreOffice is a patchwork of source code, how do we know as a community that this application has not been infiltrated by rogue programmers? Has every line of code and libraries been validated? Is there a process in place to prevent this from happening?

Is this a naïve question? Given the fact that many people rely on open source tools, they seem a natural vehicle to disseminate spyware.

Any guidance would be appreciated.

2014-12-15 16:19:06 +0200 質問をする What safeguards are there to prevent spyware/malware from being incorporated into LibreOffice?

Dear community,

I am not new to LibreOffice. It has been a valuable tool for many years. Recently, I started migrating my lab to newer equipment and modern software, but now I give very careful consideration to the software I install in my machines.

With recent events in the realm of government surveillance (allies and foes) and cybercrime, and given the complexity of a large software development operation with many contributors, what mechanisms are there in place to prevent incorporation of spyware into LibreOffice? It is obvious that widely used open source packages are coveted prices for rogue developers.

My apologies in advance if this matter has been discussed before. I simply could not find it. This is a matter that, if it is being addressed, should be advertised prominently.

Thanks,

JBGM