Mozilla Foundation Looking for Names of Organizations That Have Switched to Mozilla
Sunday July 18th, 2004
Bart Decrem writes: "The Mozilla Foundation is looking for examples of companies or organizations that have moved from IE to Mozilla-based browsers in the last few weeks. Please chime in if you know of any!"
#11 Re: Re: Laws
Sunday July 18th, 2004 6:29 PM
You are replying to this message
As I said " I do not expect a program to be bug proof, buy the way outlook works is ridiculous." Even a well developed software as Mozilla/Opera will have security bugs, but when entire networks for companies, hospitals, etc... are down recurrently due to a single software company, then the legislators should intervene.
"Users should be accountable for their actions imo." I agree with you, but in the case of outlook & IE user input frequently does not make any difference.
" if an IT manager is not aware of important bugs/security risks then he shouldn't be in the job." I once accidentally found traces a key logger in a hospital; a resident has placed it and he confessed. The IT people did not do sh*t about it even with the HIPAA looming in the horizon. The same applies to M$ products. Even with all the security bugs IT people refuse to support any other product. The decision is usually taken at a higher level by people who work at the business model; they take the whole package and go by the saying "if it works, don't break it". People who suggest change are looked upon as a nuisance. Even if they are aware of some of the security risks, they will go with the flow of the market and do what other institutions are doing. The HIPAA has helped in correcting most of the business model flaws at least in the medical field, but other fields are still a mess. IT people just wait for M$ to fix the bug since most other people are doing the same.
"It would be imo very damaging to free software developers who could not afford to take out legal insurance against this." 1) Free/OSS software developers can have this covered in the license. Look around you, OSS most of the times has better security than the commercial counterpart. 2) With OSS, the testing &/or reliability of the product can be left up to the client/company. In the Lab testing field, many tests are not FDA certified; the lab has the control samples and provides the data when ever requested in a court or an internal/external inspection. Why can't software be treated the same way. It may be easier for software since many of the OSS products are continuously updated/modified and the operating environment does not have as much unpredictable variables as in laboratory testing. The last point may be very far ahead but is just a thought.