The Heartbleed bug has ignited a new round of open source doubters, but are the renewed concerns about the open source development model unfounded? And what can be done to avoid catastrophes like this in the future? We discuss.

Plus an honest discussion about that moment of no return, your feedback, and more!

Note: Apologies for the transitional audio setup while we move between studios. Improvements next week!

Thanks to:

Direct Download:

MP3 Audio | OGG Audio | Video | Torrent | YouTube

RSS Feeds:

MP3 Feed | OGG Feed | Video Feed | Torrent Feed | iTunes Audio | iTunes Video

— Show Notes: —

Feedback

• How do you know what to use?
• I quit!!! The difficult conversations and the road ahead.

Dev Hoopla

Heartbleed security bug: a software developer perspective?

Open Source software is the worst kind except for all of the others

A few people have suggested that the problem is that OpenSSL is open source, and code this important should be left to trained professionals. They\’re wrong.

So all in all, it\’s a miracle that OpenSSL works at all, and a tribute to the skill
and diligence of the handful of people who\’ve been working on it all these years.
Experience with heartbleed shows that while open source doesn\’t prevent bugs, it
makes it very fast to fix them.
It\’s been little more than a week since we learned about heartbleed, and surveys show that
the majority of vulnerable systems are already fixed.
(I fixed mine last Tuesday.)

Pick of the week

• pyvideo.org – PyCon US 2014
  > PyCon is the largest annual gathering for the community using and developing the open-source Python programming language. It is produced and underwritten by the Python Software Foundation