Slashdot Mirror

← Back to Stories (view on slashdot.org)

Red Hat's Open Source Assurance Program

Posted by michael on from the safety-blanket dept.

scubacuda writes "ZDnet and others report that Red Hat now offers the 'Open Source Assurance Program' as protection for customers if they get hit with a copyright infringement case from the SCO Group. From their website: 'A key feature of the Open Source Assurance Program is an Intellectual Property Warranty. The warranty ensures, that in the event that an infringement issue is identified in Red Hat Enterprise Linux software code, Red Hat will replace the infringing code. Red Hat's warranty assures customers that they can use Red Hat Enterprise Linux and related solutions without interruption. The warranty is available for all customers having a valid registered subscription to Red Hat Enterprise Linux or related solutions.'" Following close behind Novell and Hewlett-Packard, but it looks like Red Hat is not actually indemnifying their customers like Novell and HP, but rather is simply promising to fix any real copyright problems moving forward, which is something I think we would assume they would do in any case.

19 of 142 comments (clear)

  1. The Ultimate Game of Poker by Newspimp · · Score: 3, Insightful

    Seeing as SCO can prove just about diddly, I don't think the RedHat Legal Code Change team will have much to do. The cards are being called SCO. Bluff time is over.

  2. indemnity? by trix_e · · Score: 4, Insightful

    I'm not sure having Red Hat indemnify me or my company would give me the warm fuzzies anyway...

    for indemnification to be meaningful you have to assume that the pockets behind it are deep enough to be able to actually pay out and protect you when (god forbid) the time comes.

    Red Hat doesn't have enough of a track record for their promise to protect me to mean too much to me.

    Yeah, replacing the ostensibly offending code is nice, but it won't get me off the hook if I've already been using something that has been found to be infringing.

    With all that said you have to really believe that there is a reasonable shot of SCO succeeding for any of this to be terribly meaningful to you...

    --
    No man is an island, but Gary is a city in Indiana.
    1. Re:indemnity? by Rhubarb+Crumble · · Score: 3, Insightful
      Red Hat doesn't have enough of a track record for their promise to protect me to mean too much to me.

      Exactly, and this is why this may do as much harm as good. Think about it in the context of RH trying to show people that "yes, we're a serious software company, not a bunch of GNU/hippies".

      Obviously they have to offer something to counter the FUD, if they want people to buy their products. The only question is, will it backfire, as their "something" doesn't cut it? Will it cause potential clients to go "oh look, it's not even a real warranty - they're not a real company after all, let's buy from a real vendor"?

  3. All good and well, but... by Zigg · · Score: 3, Insightful

    It seems to me that SCO's pathetic case is shifting away from copyright and into ideas. If a ruling comes down saying that, for example, nobody but SCO can use the methods involved in a critical feature of RHE, what happens then?

  4. Management by the_mad_poster · · Score: 2, Insightful

    ...something I think we would assume they would do in any case.

    Managers and lawyers don't care about the facts unless those facts are in writing.

    Of course they'd fix it going forward, but it gives manadrones and legal eagles a warm, fuzzy feeling to see documents that actually say that.

    --
    Alito: A vote for Alito is a punch in the eye to put that bitch back in her place!
  5. Re:Can't indemnify by trix_e · · Score: 4, Insightful

    huh?

    if you can't indemnify 3rd parties, who the heck can you indemnify? That's the very definition of the word, to protect another party against damage or loss...

    --
    No man is an island, but Gary is a city in Indiana.
  6. Don't worry too much about how it will work by rm007 · · Score: 3, Insightful

    This is, after all, first and foremost a bit of marketing. Red Hat is trying to get the message out to customers and would-be customers that the whole SCO thing does not create uncertainty or risk over the purchase or use of their product.

    --


    I've finally got around to changing my sig
  7. A business manuever by JSkills · · Score: 3, Insightful
    Red Hat is addressing SCO's flailing attempts to scare people (and suck money) with about as much effort as is deserved for such an obviously groundless lawsuit - by providing some lip service agreement to their customers that they'll bear the brunt if the customer is ever sued.

    To echo some earlier posters, yes it is legally useless, but my guess is that they feel they can offer it since they'll know they'll never need to follow through. As in ... "Sure, if God ever showed up on earth to judge you, I'd take the blame for your sins.".

  8. Red Hat Transmits the Community Offer ... by leoaugust · · Score: 4, Insightful

    The Linux Community has already offered to rip out the infringing code and replace it once it is identified. Red Hat has understood that the community is going to live to its word and has formalized this into an offer of "Intellectual Property Warrant." This formal offer on behalf of the community may be more acceptable to the business folks rather than the diffuse commitments of the Linux Community. I think that's all there is to it.

    --
    To see a world in a grain of sand, and then to step back and see the beach where the sand lies ...
  9. SCO's flawed strategy by Crayola · · Score: 4, Insightful
    This isn't just a matter of Red Hat "doing what they should" in case of copyright infringement -- they're offering to be the ones to fix copyright violations in Linux even if they were never the ones who copied the code. This clears up the whole "who'll fix it?" issue for corporate customers. (Of course, every Linux developer under the sun has offered to do the same, but this is a legal deal that CIOs can sink their teeth into).


    The problem SCO is facing is this: they want to sell Linux "licenses" because their intellectual property is supposedly in there. And let's be clear -- it's not patent, trade secret, or trademark IP but copyright IP. But as soon as they say "we own this", the code can get yanked within days or weeks and re-written. So the licenses are worthless, which is why they're being so coy about pointing to the code (aside from silly claims on the ABI headers)


    Of couse, they're suing IBM, alleging contract violations for letting their Super Special (and mysteriously Secret) stuff into Linux and claiming AIX, etc is a derivative of UNIX system V. And maybe there is a thin legal thread that might encumber AIX.


    But who signed that contract on behalf of Linux? No one. Linux might have a few lines of copied code, but with no contract with SCO, there's no legal reason SCO gets to "own" Linux by calling it a derivative -- you'd need a contract for that.


    So even if they're right, they're hosed. And I have my doubts about how right they are.

  10. Peace of mind for the customer by aquabat · · Score: 5, Insightful
    If we assume SCO somehow convinces a judge that they own something in Linux, then the most they can do to an end user is demand that the user either sign a contract that allows them to continue using that part of Linux, or stop using that part of Linux.

    RedHat is saying to its customers "You can keep using our product without worry: We'll be right over to replace any part of your RedHat Linux solution which SCO can convince a judge they own."

    RedHat has it right. They know SCO can't sue an end user for breach of contract if SCO doesn't have a contract with the end user.

    --
    A republic cannot succeed till it contains a certain body of men imbued with the principles of justice and honour.
  11. Re:Can't indemnify by Anonymous Coward · · Score: 1, Insightful

    if you can't indemnify 3rd parties, who the heck can you indemnify?

    If I license Red Hat Enterprise Linux then Redhat and I are the first and second parties. Why should I care what they do for third parties?

  12. RH has always been careful about IP by ivanmarsh · · Score: 5, Insightful

    That's why they removed fortune cookie and mp3 support from their distro.

  13. Do you work at SCO by any chance? by MarkusQ · · Score: 2, Insightful

    Here at work, once you get exposed to open source code, you can never go back to dealing with internal code merely due to the risks that algorithms you develop internally may accidentally be recreated in open source work.

    Sorry, that just seems basakwards. There is no problem with "recreating algorithms" from open source software, since it is protected by copyrights, not by patents. Some licences (e.g. BSD) will even let you copy source code as long as you give credit where credit is due.

    I'd say you or your company have either fallen for FUD or are trying to spread some.

    -- MarkusQ

  14. Re:Issues about exposure to code? by bluGill · · Score: 2, Insightful

    Where do you get programers then? I assume that you wouldn't hire me because I've worked for a different company before, and I might recreate something that the previous company did. Seriously, this boggles my mind, I've had access to source code from 2 different companies, plus a bunch of code [mostly trivial but not all] in school. I could accidentally be coping some of that code into your products.

  15. would get damages from the offender,not end user by GodWasAnAlien · · Score: 3, Insightful

    The company or person who put the [currently vapor] code there may be held liable. But not the end user who has been assured that the code is open source.

    If someone contributed a short story to the NYT, and the NYT times printed it, a reader of the paper would certainly not owe royalties if the copyright turned out to be bogus.

  16. Re:Stock by gvibes · · Score: 1, Insightful

    I could be wrong, but my guess is that this isn't an analyst's measure of risk, but rather a mathematical measure based on past volatility (related to Beta, for you finance people who know more than me out there).

  17. Re:Can't indemnify by Trepalium · · Score: 2, Insightful

    Don't be silly. Within a few hours SCO will release a press release saying that Red Hat's actions prove that there are flaws in the Linux development process, and that Red Hat is putting themselves at risk. You gotta remember SCO logic. IBM doesn't indemnify -- IBM knows there's problems with Linux. HP does indemnify -- HP knows there's problems with Linux. You simply cannot win against this kind of logic.

    --
    I used up all my sick days, so I'm calling in dead.
  18. It doesn't look limited to SCO by phr1 · · Score: 2, Insightful
    and therefore looks like it could be very difficult to honor. What happens if some major application turns out to infringe? E.g., suspend disbelief for a moment and imagine that GIMP's code turns out to be 97% ripped off from Photoshop. Red Hat is now going to rewrite it all?

    Also, what about patents? The "Assurance program" isn't limited to copyrights. If some program is found to infringe a patent, there may not be any way to reimplement the functionality without still infringing.