Back in 1999, Eric Raymond coined the term "Linus' Law," which stipulates that given enough eyeballs, all bugs are shallow. Linus' Law, named in honor of Linux creator Linus Torvalds, has for nearly two decades been used by some as a doctrine to explain why open source software should have better security.
In recent years, open source projects and code have experienced multiple security issues, but does that mean Linus' Law isn't valid? The key question isn't about software development models, but rather about having an architectural design that makes software more resilient. A good article on a subject we often get asked about.
Read the full article at eSecurityPlanet