Quote:
Originally Posted by splat
Do you really not see finding flaws in applications as a problem?
|
Yes, I
definitely see finding flaws in applications as a problem. I find fault with people who make full-time
careers out of ferreting out said flaws in free software. Especially the ones who start internet vendettas when the developer(s) of said free software don't immediately jump to "correct" what the "expert" sees as "flaws." It's a form of extortion that I find disgusting.
It's open source... if you can't live with the minor security risk it represents (and it
is minor as hell)... patch your own copy to fix the potential hole, or stop using the software. It's that simple.
Quote:
These guys are trying to help and unfortunately the impression I get from Kovid is that it's bare minimum to fix the issue is being done, which results in it being easily worked around time and time again.
|
These guys aren't trying to "help." Calibre just happened to be the latest target in their sights. I've seen the tactic used again and again and again with various open-source projects. If it's popular, these rats will eventually come out of their holes at some point and attempt to tear it down. "'Fix' it or we'll start an internet-wide smear campaign."
I actually
applaud calibre's developers for not giving in to this kind of extortion.