Closed-source security solutions
The recent report of someone finding backdoors in Barracuda Networks’ firewall and VPN products didn’t surprise me much. What else do you expect from a closed-source solution? I mean really, when are people going to stop trusting black-box solutions? Security is always a trust issue no matter what aspect you are looking at. Why would you trust something with your security without knowing exactly what it does and how it works?
Open source solutions are completely different. You can look inside, see how things work, make changes if you like, and trust the solution works the way you expect it to. You aren’t trusting the company that is selling it to you but rather you are trusting yourself or your own people. Why would you want it any other way?