So day one of my new job as a Security Incident Analyst, and I got into a bit of a bit of a debate with my new boss...
We were talking about Android and iOS, and he said that he would never use Android, or any open source software (OSS) because it's inherently insecure.
I asked him to elaborate, and he said that "anyone can access the source code, so anyone can see how it works and easily hack it".
To which I responded with, "yes, but isn't that a good thing? Many developers can find issues and quickly patch them. However, is iOS, you've never seen the source code, so how do you know there isn't a deliberate back door?"
He simply said, "there might me, but I seriously doubt it."
So according to him, OSS is insecure, simply because we can see/change the source code. What do you guys think? Personally, I can see pro's and con's on both sides of the fence.