openssl validates my theory that the most poorly written software ends up being ... | Hacker News

Hacker News new | past | comments | ask | show | jobs | submit

login

fnord77 on June 16, 2023 | parent | context | favorite | on: OpenSSL 1.1.1 End of Life Approaching

openssl validates my theory that the most poorly written software ends up being the most used software.

I'm honestly shocked more critical bugs haven't been found in it. I guess that attests to the power of tools like Valgrind

er4hn on June 16, 2023 [–]

Who should write crypto code? People with PhDs in Cryptography and deep experience with the language they are using!

What does OpenSSL do? Not that!

If this was measured like a startup they have been wildly successful by ignoring best practices and offering something that people want and that works just good enough.

Guidelines | FAQ | Lists | API | Security | Legal | Apply to YC | Contact