Skype Video

[mcr at xdsinc.net]

-----BEGIN PGP SIGNED MESSAGE-----
Hash: SHA1


>>>>> "Daniel" == Daniel Robitaille <robitaille at gmail.com> writes:
    >> Say no to SKYPE.  How many CVE's have been reported in SKYPE this
    >> year?

    Daniel> if I believe the search engine at nvd.nist.gov, only one in
    Daniel> 2007:

    Daniel> http://nvd.nist.gov/nvd.cfm?cvename=CVE-2007-4429

    Daniel> Interestingly, WengoPhone also got one this year:
    Daniel> http://nvd.nist.gov/nvd.cfm?cvename=CVE-2007-4366

    Daniel> I didn't find any CVE for Gizmo this year.

    Daniel> I'm not proposing he use or non-use of Skype, or free vs
    Daniel> close source here.  But the number of CVE in a calendar year
    Daniel> is probably not the best metric to use; security
    Daniel> vulnerabilities occurs in all software people use, open or
    Daniel> close source.

  When Skype has a CVE, you are screwed. (And I don't know that Skype
had CVEs issues for all their bugs)

  When WebPhone has a CVE, you switch to Gizmo. Or VV.
  Or switch from a CISCO SIP phone to a Grandstream SIP phone.  
  You can do that with standards. You can't do that with closed systems.
It's not about open source. It's about open standards.

- -- 
Michael Richardson <mcr at xdsinc.net>
XDS Inc, Ottawa, ON             
Personal: http://www.sandelman.ca/mcr/ 


-----BEGIN PGP SIGNATURE-----
Version: GnuPG v1.4.6 (GNU/Linux)

iQDVAwUBRysPsu0sRu40D6vCAQJbkQYAnJKZmeRScXQcxeyrJ8YjrtCevqho6n8m
kdGCWqbtTFNRumGF9mxqlF7DnaDfUNaUhOfry63Oetla2oFWnacGuYwxfnFlV3Tj
EqzyEvBP4znBn0Ywi8SsyrJdV3UqiHBlxkbqk3UK4ui5RQpHW/1K4tvAHTy3uyzO
o/EpfLbO+DseEyrxEt/8xRjzEOB5J4VNihxZwvRxkEpsmDf4igQsX8pKfqxEzvX8
9Ah4MWxZWvUyyhA6vYNHK59C3vMvPjVN
=b7ws
-----END PGP SIGNATURE-----