[Date Prev][Date Next][Thread Prev][Thread Next][Date Index][Thread Index]

Re: Data Transmission with HTTPAPI

From: Scott Klement <sk@xxxxxxxxxxxxxxxx>
To: HTTPAPI and FTPAPI Projects <ftpapi@xxxxxxxxxxxxxxxxxxxxxx>
Subject: Re: Data Transmission with HTTPAPI
Date: Thu, 28 Jan 2010 14:32:22 -0600

Hi Brad,

Consider reading "The Cathedral and the Bazaar" by Eric S. Raymond, and 
"Wikinomics" by Don Tapscott (et al).  They explain open source far 
better than I could.

Basically, open source gives you the full source code.  It also gives 
you the freedom to make your own changes to the source code, and 
redistribute it yourself if you want to.

That means:
  -- I can't discontinue the product, and leave you high & dry.
  -- If I stop work on it, you'll be able to continue it yourself
       (most likely in conjunction with the other users of the product)
  -- I can't hide malicious, insecure, or deceptive code in the product
       because you can *see* exactly what's in it.



On 1/27/2010 3:39 PM, Huskey, Brad wrote:
>
> How can I be sure the data being transmitted with HTTPAPI is being
> shared with only the intended parties?  I am not thinking so much
> about the encryption aspect (I expect we will use SSL for sensitive
> data), but more about the software itself.  I am not suggesting the
> software has malicious code in it, but our data security team will be
> very interested in demonstrating the software's integrity.
>
-----------------------------------------------------------------------
This is the FTPAPI mailing list.  To unsubscribe, please go to:
http://www.scottklement.com/mailman/listinfo/ftpapi
-----------------------------------------------------------------------

References:
- Data Transmission with HTTPAPI
  - From: Huskey, Brad

Prev by Date: Re: Data Transmission with HTTPAPI
Next by Date: Re: Data Transmission with HTTPAPI
Previous by thread: Re: Data Transmission with HTTPAPI
Next by thread: Re: Data Transmission with HTTPAPI
Index(es):
- Date
- Thread