[john61]

"it will never be enough by itself to establish that a system doesn't contain malicious code."

The track record of popular free software projects like for example Linux in preventing malicious code is very good as far as I know.

[achou]

Linux isn’t all of open source, nor likely to be the most attractive vector of infiltration for any given target, and not all of even Linux is examined with the same level of scrutiny.