Good discussion of code auditing

Dana has another great blog about auditing code in open and closed environments.

Along with the "many eyes" fallacy used for open source development, I'd also like to see someone with more time on their hands than me tackle the equally fallacious "OSS developers write better code because they do it for love while closed-source developers do it for money" argument or the "OSS developers write better code because it has their name on it and they know other people will look at it while closed-source developers write garbage because it will never see the light of day" argument.

Just because this car is red doesn't mean all cars are red. Maybe they're not teaching basic logic in school these days?

If no-one at Microsoft cares about anything other than the almighty dollar, why am I always blogging about random junk at way-too-much past midnight?!? :-)