Help Make Open Source Secure (The Mozilla Blog)
The SOS Fund will provide security auditing, remediation, and verification for key open source software projects. The Fund is part of the Mozilla Open Source Support program (MOSS) and has been allocated $500,000 in initial funding, which will cover audits of some widely-used open source libraries and programs. But we hope this is only the beginning. We want to see the numerous companies and governments that use open source join us and provide additional financial support. We challenge these beneficiaries of open source to pay it forward and help secure the Internet. Security is a process. To have substantial and lasting benefit, we need to invest in education, best practices, and a host of other areas. Yet we hope that this fund will provide needed short-term benefits and industry momentum to help strengthen open source projects." SOS sounds similar in scope to the Core Infrastructure Initiative (CII) set up by the Linux Foundation.
Posted Jun 13, 2016 13:49 UTC (Mon)
by XERC (guest, #14626)
[Link] (1 responses)
The moral of the story: anybody, who wants to do something technically really good and awesome in this world needs to finance all of the work from his own pocket or from the pockets of people, who just believe in You, in Ventur Capitalist terms, the 3F, the Friends-Family-and-Fools.
In that respect the "spray-and-pray" investment strategy has the highest probability of hitting a sweet spot. For both, Venture Capitalists, and for philanthropists.
Posted Jun 13, 2016 19:22 UTC (Mon)
by tialaramex (subscriber, #21167)
[Link]
It's true that the general public cannot be expected to figure out whether this sort of work is a good idea when making funding decisions, but that's fine because Mozilla isn't expecting the general public to make these decisions.
Help Make Open Source Secure (The Mozilla Blog)
Help Make Open Source Secure (The Mozilla Blog)