2016, Linux has 25 XNUMX life-saving. It began as a project for students and is everywhere: from smartphones, supercomputers, web servers and cloud boxes to the latest smart cars.
Even the exception, the end user, moves to Linux if you think Android is today the most popular mobile device. In addition, Chromebooks are becoming more and more popular.
Even traditional Linux desktops such as Arch, Debian, Fedora, openSUSE, MintAnd Ubuntu they seem to be gaining ground. Of course, the Linux desktop market share is still very small compared to other operating systems, although Linux users have always been.
On the other hand, almost all web pages and too many Software-as-a-Service (SaaS) run on with this particular operating system.
Even Microsoft is reportedly making a penetration of the penguin, since the year we passed it became an official member Linux Foundation.
So, with everything that happens last, why worry?
Because now every hacker who is really a hacker and not just a script-kiddie can hit Linux as an open source, chasing vulnerabilities.
The open-source community leader Eric S. Raymond pointed out years ago in Linus's Law that: "with enough eyes the bugs will not exist" in a free translation of "Given enough eyeballs all bugs are shallow ». This is one of the basic concepts that made open source functional to have the success it has today as it strengthens open source software.
But it works only if there are enough eyes looking for bugs to correct the code. The estimates of the number of errors per thousand lines of code (KLOC) ranges from 15 to 50 errors per KLOC and in three if the code has been tested and tested very strictly. The core of Linux just comes today with over 16 million lines of code. Make account ....
2016 and we have seen two big Linux security flaws to be skipped before they are fixed. These voids were in LUKS disk encryption and Dirty Cow, a problem in Linux memory. There were also other minor bugs in Linux, 2016, but in honor of the developers, these problems were repaired almost as soon as they appeared.
In defining problems in his code, Linux has broken all records, and the support provided is far superior and much more direct than that of Apple, Microsoft, or any other provider of code-based software.
But let's make the bills:
There are at least 3.000 bugs to be discovered and repaired ...
There are, of course, leading Linux security developers who are responsible for hunting these bugs. There are instructions on how to report errors when you find them. But there are never enough developers to fix even the reported bugs.
One of the Linux leaders Jon "Maddog" Hall noticed a few years ago:
"Some people argue that Free Software has unlimited resources, but each product or project is limited to resources in one way or another. The number of people who can work in free software is limited to people who have the ability, time and willingness to contribute. »
At the same time, hackers have more incentives than ever to break open source operating. Irish developer Donncha O'Cearbhaill, who recently unveiled two bugs on Ubuntu desktop Reported, that they made him an offer of $ 10.000 from a malware company.
"These financial incentives only increase when software becomes more secure and errors are more difficult to discover," he said.
As you can see from above, the popular open source operating system has gained great power. And because great power is also a big responsibility, developers will have to take over to maintain its security.
The idea of publication came from ZDNet and the article by Steven J. Vaughan-Nichols