@ashwinvis @strypey It's better not to need trust. With Windows, you have to trust that the closed code is doing what you want. With linux, you can't inspect all the code and you have to trust that others are auditing competently.
@strypey @ashwinvis Recall that #openSSL had a quite serious bug around ~10 yrs ago. After it was discovered, it was realized that no one spotted the bug for several years.
@aktivismoEstasMiaLuo OpenSSL was a very different case to the Linux kernel, which has dozens of paid devs plus volunteers. It's worth noting that if OpenSSL was proprietary, the bug would probably not have been found at all, and would still be unpatched.
@strypey @aktivismoEstasMiaLuo @ashwinvis
The problem with OpenSSL was the same as GnuPG or many other popular open-source software. Everyone is using them and everyone expects they will be maintained and developed in accordance to best practices but... nobody supports them.
This applies equally to large companies who monetize every dollar from open-source but donate nothing, just as well as regular users who *could* easily donate $1 per month but won't because they expect "someone else"...
@kravietz yup, it's the Snowdrift Dilemma:
https://wiki.snowdrift.coop/about/snowdrift-dilemma
But there's software this definitely doesn't apply to, eg the Linux kernel.
@strypey @aktivismoEstasMiaLuo @ashwinvis
This is sometimes pain because right now I get receipts from LiberaPay, Patreon, OpenCollective, PayPal and god-knows-what-else donation systems but well, it's still worth it.
@kravietz @ashwinvis @strypey Since you mention #Paypal, plz read this (https://dev.lemmy.ml/post/30880) & consider boycotting Paypal. This may mean telling projects to find another payment processor -- and they will have some motivation to do so if a donor insists on it.
@aktivismoEstasMiaLuo @ashwinvis @strypey
I absolutely support this and personally I'm suggesting to all projects I support to use LiberaPay.
