Google code search: good or bad?

[michaelslists at gmail.com (mikeiscool)]

good or bad, it's quite old. www.koders.com has been doing it for
years. considering the source is available for anyone to download
anyway, and investigate themselves, i don't see the big deal. the
engines just let you search a whole bunch at once, and why would any
one company/product care about that? if you want to target them, you
do. if you just want to find a bug in any given open source product,
then one of these may be slightly useful.

if the main concern is that code can accidently get online, well that
problem has been around forever and will never go away. better to
expose it and have it dealt with, really.

all in all, no big deal. jmho.

-- mic


On 10/12/06, Gary McGraw <gem at cigital.com> wrote:
> Hi all,
>
> I spoke to Dennis Fisher about the Google code searching stuff that's
> been floating around on the list for a few weeks (since the original
> Bugle posting).  Here's the resulting article:
>
> http://searchsecurity.techtarget.com/originalContent/0,289142,sid14_gci1
> 222898,00.html
>
> BTW, I wrote about this idea in my own article on darkreading back in
> August:
>
> http://www.darkreading.com/document.asp?doc_id=100643
>
> What do you guys think about the capability?  Is it good or is it bad?
>
> gem
>
> company www.cigital.com
> podcast www.cigital.com/silverbullet
> book www.swsec.com