Follow up - XP and SP2 comments
By wyllys on Aug 26, 2004
Just to be clear, I never said they would not find bugs or holes in SP2, I know they have found a few issues already and I'm sure there will be more. My point was that it was an aggressive attempt on their part. Considering the sheer size of the change and the number of programs modified and the volume of code involved , its inevitable that there will be more bugs and holes. I'm not defending the quality of the patch, either. I was just questioning the negative hype that has erupted about the patch and trying to judge its value based on the bugs it fixed versus the bugs it caused.
Are the new problems worse than the ones they were trying to fix? I don't know the answer, but the impact will vary depending on the environment in which it is deployed.
Bottom line - Nobody writes bug free software. Nobody.
Open source code isn't necessarily the answer, either. Open Source code has the advantage of having \*potentially\* many more eyeballs examining it and also has the advantage of getting fixed quickly when their is a problem. However, potential eyeballs to review code doesn't always translate into large numbers of actual people reviewing the stuff. Quite often, on large projects like Mozilla (for example), there number of people actually reviewing code changes is quite small, certainly no larger than the number of people that would look at the same code if it were produced by a big company (Sun, Apple, Microsoft, etc).