• HBingZ@sh.itjust.works
    link
    fedilink
    English
    arrow-up
    0
    ·
    1 month ago

    We appreciate your concern about the security of our software, but we don’t have plans for a security audit at this time. Our open-source approach and commitment to secure coding practices are sufficient to ensure the security of our software.

    As an open-source project, our code is available for anyone to review and audit. If you’re tech-savvy and concerned about security, you’re welcome to dive into the code and verify our claims for yourself.

    We’re a team of experienced developers who are passionate about creating secure and reliable software. We’re asking that you trust us to do the right thing. We’ve earned that trust through our hard work and dedication to our craft. We’re not perfect, but we’re always striving to improve.

    We believe that our approach is effective, and we’re not going to divert resources to a security audit that we don’t think is necessary. We hope you can understand and respect our decision.

  • umami_wasabi@lemmy.ml
    link
    fedilink
    arrow-up
    0
    ·
    edit-2
    1 month ago

    As HN: RustDesk Installs Chinese Root Certificates

    WTF? A root cert that I don’t know how the private key being handled install sliently? This isn’t just a mishap but a fucking backdoor. No matter how legit the purpose is, this is plain unacceptable.

    Update: It seems they have removed that cert alraedy.

    https://github.com/rustdesk/rustdesk/discussions/6444

  • hitwright@lemmy.world
    link
    fedilink
    arrow-up
    0
    ·
    edit-2
    1 month ago

    I don’t get the FUD post. The thing is open-source. If security audit is required, why not just do it?

    The OP is a new user with no other posts, except this in many places