[josephcsible]

> there could be legitimate security reasons to keep server code confidential

If this is ever the case, it means the server code has been written in a horribly vulnerable way and you should never use it.

[renaudg]

Not necessarily : defense in depth is a thing.

[helpfulclippy]

While it is theoretically possible that the proprietary software is well-written, I would feel much safer if “defense in depth” were achieved by opening the server code and exposing it to as much audit and commentary as possible.

[rmorey]

Yeah you're probably right