The GNUTLS bug was found, it was fixed and people were upset obviously. What I cannot understand is that when people complained about that, open source developers and their supporters(I’m not sure about the GNUTLS people, but unrelated open source people) started saying “if you don’t like it, don’t use it” and asking why users didn’t test for a crypto bug they wouldn’t even know how to look for.
This argument is ridiculous. When your software fails me, whether it be GNUTLS exposing me to man in the middle attacks, firefox crashing on me while trying to submit an assignment, or libreoffice losing two hours of my work I can complain about it. Sure there’s no point since what happened happened but the least open source devs can do is own up to their mistakes. What good is it to switch to something else when my data has already been stolen or my work has already been lost?
Instead they complain about why the users aren’t contributing, making it their fault that these mistakes happen. Guys, you’re people, you make mistakes, we get that but don’t blame us for something that is totally on you. We know the software is provided as is without warranty but we’re just putting it out there that we are upset that this has happened.
Be accountable like adults instead of blaming others like children.