Bugle Goes Googling for Source Code Flaws
,----[ Quote ]
| The world's most popular search engine can be used to pinpoint
| software security bugs in source code available on the Internet,
| according to a new research project launched by a U.K.-based researcher.
|
| The project, called Bugle, is a collection of Google search queries
| that can be used to identify some of the most common vulnerabilities
| in open-source code indexed by the search giant.
`----
http://www.eweek.com/article2/0,1895,1994003,00.asp
Another merit of OSS... think of all the /automated/ peer review. malicious
use has been possible for quite some time (download then scan), but here's a
benevolent brute-force approach.
There are some speculations that Google new service (to be unveiled on
Thursday) will resemble SourceForge.
|
|
