Slashdot Mirror
Indemnification Roundup
Skapare writes "O'Reilly Network's LinuxDevCenter has a great article summarizing the indemnification possibilities for businesses considering switching to (or staying with) Linux. Author Tom Adelstein covers the business risk mitigation aspects of using Linux today, and details available indemnification offerings from Novell, HP, Red Hat, and OSRM. So why not print a copy and send it to your company CEO."
Here we have an allegedly pro-Linux site promoting the same false statement. That if you run Linux, you have an increased legal risk and hence should shop around for a vendor that indemnifies its users or buy insurance to do so.
If you're going to do an article like this, at least remove the distinction between FOSS (free and open source software) and proprietary software. For example, have a section that lists Microsoft, and then has a statement that says Microsoft does not indemnify their customers.
All these risks people are throwing out about FOSS play right into the hands of proprietary software vendors trying to figure out ways to up the TCO of Linux. Shame on LinuxDevCenter for playing along.
For something that has yet to be proven, and all signs point to the SCO case as being a farse.
These companies backing their products with legal aid are simply doing it as a marketing ploy. RedHat, HP, Novell.. they know there's nothing to worry about, that's why they've all been so eager to extend these "services."
I can't wait until the whole SCO case is just over. We all here know that SCO will lose.
- It's not the Macs I hate. It's Digg users. -
Why is it even necessary to get this kind of insurance, it would be the company selling the software to me that is liable, not myself unless I decide to redistribute it, and even then...
Join moola.com, play games to earn money.
Looking for Indemnification While Linux Sales Double
by Tom Adelstein
06/28/2004
Little doubt exists; a legal cloud hangs over Linux from infringement claims of the SCO Group, Inc. In spite of that cloud, Linux server sales grew 56.9 percent in the first quarter of the year. Linux sales in 2004 follows six consecutive quarters of double-digit growth for the free operating system during unprecedented legal attacks from SCO over the same period.
Advertisement
Linux success helped push all server growth to 7.3 percent according to IDC's Worldwide Quarterly Server Tracker. The contradictions of sales increases and legal uncertainties bring into question the degree of concern people actually feel about SCO's legal claims. One might say, if the defendants of the SCO suits don't see concern, why should I?
This article examines issues related to Linux use in the enterprise while copyright infringement claims exist. CIO's and others who need pragmatic information when deciding whether or not to deploy Linux will find this useful. Rather than examine the legal case, we will examine market perception and risk related to using Linux.
Market Perception
SCO believes that Linux infringes on its Intellectual Property. SCO has sued IBM, Novell, AutoZone, and DaimlerChrysler on the basis of that belief. IBM and Novell market Linux while AutoZone and DaimlerChrysler use Linux in their businesses.
Realists consider Linux adoption remarkable. The word on the street and in the foxholes of the IT community has created a swell of adoption from small businesses to the entire Fortune 500. The marketing of Linux by HP, IBM, Sun, Dell, Oracle, and Novell demonstrates the commitment of industry to Linux. With all the agreement in the market, most observers do not give SCO much of a chance of winning its cases.
The recent announcement that the U.S. Federal Court system has deployed Linux adds further to the speculation that Linux deployment may be safe. People will reason that Linux use in the courts bodes poorly for SCO.
Normal Risks Associated with Software Acquisition
Procurement policies within large organizations discuss infringement. For example, the basic policy for software purchases at the University of Texas states:
"We should expect that Vendors will develop their products without infringing the intellectual property rights of others, that is, without appropriating others' protected ideas or expression."
Large purchasers want warranties from vendors guaranteeing their software does not infringe. Such purchasers do not necessarily expect vendors to provide warranties. They do expect that if the software infringes someone else's rights, the vendor will take care of any expenses incurred if the purchaser is sued or asked to stop using the software because of alleged infringement. Large organizations expect protection from infringement. They want to know that a software vendor will pay for expenses related to infringement and they want that stated in the software license agreement. They also realize that exceptions exist if the software is:
* Beta test software
* Free, steeply discounted, or very low-cost software
* Software provided by nonprofit vendors
* Software whose source exists in the public domain
In enterprise terms, if a vendor agrees to indemnify, it means the vendor accepts the risk of financial loss.
The first three situations above illustrate circumstances where a vendor may not make enough money on the product to justify assuming risk for indemnification. In effect the vendor says, "If you want this software, you'll have to accept the risk that it might infringe. If you want us to accept that risk, it will cost you a lot of money."
SCO's Unprecedented Infringement Case
Past infringement cases have focused on software makers rather than end users. For example, Microsoft has encountered many infringement cases from companies like Eolas, Stac, Burst, Netscape, Sun, and InterTrus
actually, I seem to remember a stink over MS SQL Server, as they bought a limited-use licence for software used to make SQL Server work. This licence [IIRC] makes it illegal to modify SQL Server, or to use it in different environments. Redhat offering services to indemnify buyers against this is actually helping to get those that would hesitate - and it's actually still far more economical that MS (actually, if you count future support and forced upgrades from MS, Linux distro's could charge $1000 per seat and still come over cheaper in the whole TCO argument). Off topic, but there was a big stink about this over a period of what? a few hours on slashdot? Really, stop advertising these ginks that don't help the problem, and start getting more information up on the propriety sh****** that is the problem..
But no one listened!
No listen to the truth!
The risk of not using Linux or other GPL licensed software is. Some day some Litigious Bastards turn around and sue you even though you have not had their software on a machine in over 7 years.
Got Code?
I wouldn't be so quick to indemnify myself; this just 'shows' SCO and their paid shills that they're right. ... they obviously know they've stolen our code for communist activities!"
"Look, these Linux users are getting indemnification
anyone that buy's into this is a complete fool. there is NO guarentee that you are protected in any way. I dont care what any of these companies say, they will not pay all your legal fees to protect yourself in court if another asswad company or person comes out of the woodwork and tries to claim that anyone using XYZ owes them $$$.
it's a bunch of empty and useless words that the companies are throwing out there. if you read it very closely I am betting that there are clauses and loopholes that relieve them of their "protection" in many ways.
if it makes a PHB heppy and shut's him up, then it may have value in that way. but it has ZERO value in any courtroom or for any protection for a company.
anyone with even a slight legal background can see this.
Do not look at laser with remaining good eye.
Nobody has ever been sued for just using Linux. However, end-users of a msft product (SQL server) have been sued over a patent violation.
v er _developers_face_huge/
http://www.theregister.co.uk/2003/02/20/sql_ser
From the evidence that exists so far, it is clear that msft end-users are the ones more likely to be sued.
Of course the most likely to be sued of all, are end-users of scox proprietary products. For the simple reason that scox has made it a normal business practice to sue anybody who has any sort of contract with scox. So far that includes: ibm, chrysler, autozone, and novell.
What was it scox spokesman blake stowell said? "Lawsuits are what you use against people you have a contract with."
These guys are doing imdemification for $100 penguin dollars
Why worry about SCO's lawuit of GNU/LINUX?
If I want to use an Open Source OS that had settled the UNIX IP matter long ago, I pick FreeBSD.
If for some reason I want the GNU tollset I could pick GNU/FreeBSD.
Too bad Tom Adelstein couldn't be bothered to point out how the SCO claims of UNIX IP vs Open Source OS was solved years ago by the BSDi crew.
Uhhh, can I take back what I said?
I know, I know. It's awfully hard to prove them wrong when they won't say exactly what they claim. So sue me. err, no... Sue them! That's what IBM, RedHat, and a few others are doing right now.
The Cheese Stands Alone.
Courtesy of your apt-get overlords
Without this indemnity SCO will carry on picking on smaller companies that use linux, who may pay up on the basis of licence<court costs*risk.
With this indemnity, SCO will be just going to a few companies who are insuring the individual users. Here the equation would be reversed, and you will have effectively pooled the legal resources of all of the linux using companies.
The insurer will have a lot more to lose in court, and a lot more resources with which to destroy SCO's arguments.
http://jfin.org/jFin pure java open source financial library
Once a business demonstrates sufficient long-term viability, there is inevitable pressure to consolidate and "standardize" the market by the removal of small competitors.
The most politically attractive tool for removing small vendors from a market is overwhelming economic force (free as in beer). Current case in point, Gmail will destroy small ISPs by teaching users to demand hundreds of megabytes of email storage. Yahoo & Hotmail have already responded.
Indemnification will do the same for Linux distributions. You may be able to roll your own distro, but it will be increasingly difficult to distribute it without legal exposure (not only to the publisher, but the distribution channel, e.g. SourceForge/OSDN).
After economic consolidation comes political consolidation (regulation). Sender-pays email, state-issued ID for publication, bank-issued ID for consumption, firewall liability insurance in exchange for permission to face the public network, VOIP-driven consolidate of "offline" and "online" IDs -- and just when you're about to go insane with boundary barriers: premium green-light services that guarantee swift passage to those who can afford it.
Creative anarchy will remain possible within organized economic pools that can negotiate regulatory barriers to entry and evolution.
Unless you're in a very small company, the CTO would be a better bet.
If you're in a really big company, then the chances are it should be going to the Director of IT.
Don't immediately shoot yourself in the foot by annoying people whose job is not to consider/deal with these issues.
Avantslash - View Slashdot cleanly on your mobile phone.
if you read it very closely I am betting that there are clauses and loopholes that relieve them of their "protection" in many ways.
...
but it has ZERO value in any courtroom or for any protection for a company.
So you haven't read it, but you can state that it has ZERO value?
anyone with even a slight legal background can see this.
I am sure that any slight legal background that you have comes from being prosecuted. You have zero knowledge of contract law.
Presumptuous of me to say?
Yeah, I thought so.
-PM
500GB of disk, 5TB of transfer, $5.95/mo
the simple fact that you need an indemnification agreement when buying linux is enough for your email too go smell the trash-bin.
a responsible CEO cannot act in a "so, sue me" manner!
and btw stop bashing SCO, its not their fault .. the real culprit is the american justice system that allows them to do what they do!
"There is nothing more frightful than ignorance in action." Johann Wolfgang von Goethe
With all the costs of linux (accountability, support services, re-writing inhouse software, re-training IT), I think that most businesses will stick with MS and license their software. This recurring cost may be more than Linux's recurring cost, but the barrier for exit from MS's world is high. However, I do think that once MS releases a new OS and eventually businesses feel pressure to switch to it, many will instead switch to Linux. The cost of switching to Linux, while higher than the cost of supporting Windows, will be lower than the cost of switching to a new Windows OS, and will present a lower forward cost. Never underestimate greed as a tool to switch people to OSS.
I submitted this story last night, and it didn't get posted.
For your consideration:
One could make some very good objections to using Linux, but liability is not one of them. If anything, the fact that the source code is freely available means that absent frivolous plaintiffs (*cough* SCO *cough*) there is a very small risk of being sued. Unlike the proprietary, closed source model, cases of actual infringement can be mitigated by the end user. If I was sued for IP infringement and didn't have the source code, my only option (assuming that infringement really took place) is to pay royalties and licensing fees. But if I do have the source code, I can simply remove the infringing material, substantially reducing the damages that a plaintiff could collect.
And for all you Microsoft-vs-Linux trolls, save it. Microsoft and Linux are just good examples of the relative strengths and weaknesses of open versus closed source. The argument would apply equally well to Adobe Photoshop vs. Gimp or Oracle vs Postgresql, etc...
The society for a thought-free internet welcomes you.
So why not print a copy and send it to your company CEO.
That's easy to answer. It's snake oil.
This is huge in my business where the CEO is gunshy from a lawsuit 7 years ago. (yeah, I know...therapy) We recently turned down a completely free, open-source component for a relatively expensive one that did less for what? Indemnification. Our legal aid couldn't guarantee us that we wouldn't get sued.
It's a problem. Businesses that use 3rd party products need those products to perform WITHOUT giving them the added legal expense. I think your ROI really drops when it includes a few suits. Small businesses, in specific, aren't about to take that chance. That being said, they're less likely to be targeted, but often the chance isn't worth it.
They want someone to point a finger at if something goes wrong...the software breaks, it destroys data, or they get sued for infringement in order to recoup lost money. With open-source, you have no one to point at. (usually)
Blog,Twitter
... in any of the Microsoft anti trust cases? I really don't know, but it sure would be interesting if there was any way to force an audit of their code looking for "stolen" code. Someone who has looked at it under an NDA might have noticed it, but be reluctant to whistleblow on the subject being afraid of getting sued from microsoft for violating the NDA, and having no one to step in and help them with the legal fees. Just a maybe there because I don't know, but I am suspicious of them and their relationship with SCO at this time. It might be one of the reasons behind the SCO suit, perhaps "protect" some code that they are using now. If there was ANY bonafide evidence of code theft at their shop, it might be enough to get a new investigation going.
What say ye, ACs who have seen the code, any wisps of smoke there?
Here is my indemnifcation plan.
Dawn of the Dead
Novell offers legal protection, but Red Hat is basically offering the ability to carry on operations without worrying about the lawsuit. I understand that legal liability is important, but the real threat is not having a solution that you are legally able to use. To me, this reduces the real uncertainty in the situation. Novell's users might not have to worry about the legal fees, but what do they do with their business until they find a new OS solution?
This is a side issue but might be tangentially relevant to the whole discussion of software patents and copyrights and various code.
Who OWNS tabbed browsing? Is there a patent on it yet? Compared to a lot of the other ridiculously silly patents out there in IP land,and all these disputes, it seems to be a major big one. It is so useful any innovation (imo) that most people who use it will hardly ever be satisfied again with any non tabbed enabled browser.
It is such a great con. Lawyer to small firm, "The company you bought from did something wrong so we are going to sue you. If there was a chance we would loose they would indemnify you so you better settle!"
Typical small company, "Oh dear we had batter settle we can not afford to loose a suit like that!"
Smart company, "If the comapny we bought this from did wrong why are you not sueing them? Could it be that you are going after those that are too weak to fight you and betting they will just cave in?"
What a crock.
See my blog http://ilovecookes.blogspot.com/ for light hearted technical information.
I have an issue with regards the indemnification for 3rd party copyright infringment at work.
:(
I have downloaded the symbian port of Expat only to be told that I'm not allowed to use it in our software due to the risk of us getting sued for copyright infringement.
Has anyone else experienced similar problems, and if so, how did you resolve them? Are there any companies who will provide liability insurance to resolve this issue? What other options are available?
Steve/
that I will be sending this to my CIO! They don't even know who the CEO of SCO is! Who is this Daryl Mcbride they speak of. I thought DARL Mcbride was the CEO of SCO, not this DarYl. I was getting ready to send that link to my CIO too..
geek n performer who performs morbid or disgusting acts, as biting off the head of a live chicken
From the article:
"Past infringement cases have focused on software makers rather than end users. For example, Microsoft has encountered many infringement cases from companies like Eolas, Stac, Burst, Netscape, Sun, and InterTrust. None of the Microsoft cases have fallen over to consumers."
While there is nothing to stop anyone from filing a claim against anyone else, one company filing a claim against the end users of a different company has NEVER happened before.
The threats can be (and have been) made, but no one has ever filed such a claim in court.
Which brings up the issue of WHY no one has ever brought such a case in court.
And then, WHAT is DIFFERENT about Linux that would change that?
So far, I have not seen anything detailing why Linux (or Open Source in general) is different from Windows (or Closed Source in general) and thus would be subject to a situation that has never happened before.
Until I see some material addressing those points, I'm going to believe this is just some stupid marketing ploy (follow the money to Microsoft).
(Note: this is just about copyright, software patents are a completely different issue.)
If you are afraid that SCO might win the case (ok, a very stupid assumption, but let's say you are), why not buy a few SCO stocks? They currently sell somewhere around USD 5, but if SCO wins, they would at least be rise to USD 200; using this money, you can easily buy a SCO IP license for your servers. If SCO loses its cases, which is the most likely outcome, you will probably lose the money invested - but that's not a difference to any other insurance.
Speaking of indemnification, why doesn't anyone ever mention that just because a software company is closed source, it doesn't mean that it will provide indemnification.
h tm l?tid=155
Look at what Microsoft did with SQL server +1 year ago....
http://slashdot.org/articles/03/02/21/1323237.s
Why on earth would I do that? The first thing (s)he'll ask is
"So there's truth behind all this SCO stuff?" At which point I'll say
"Er, well no, it's all a buncha hooey"
"So why are you showing me this?"
"Err.. uhhh"
I'm aware of the litigious world we live in, but even acknowledging that there's a possibility all this patent/SCO crap is right plays into their hands.
SCO is dying, and with it (I can hope) the threat of patent infringement lawsuits, at least as far as Linux is concerned. Let the sick dog die ignored and humiliated as it should be.
Buses stop at a bus station
Trains stop at a train station
On my desk there's a workstation....
The New York Times has announced a new idemification program. For only $100 extra over the cost of the paper, you are protected when reading the Times against any legal liability in cases that one or more of the articles is plagurized. Feel safer when reading the Times! Now your legal department can feel safe letting a copy be left in the break room at work! All for $100 dollars. PS: better stop reading those cheapo little papers who can't afford this idemification program, you could be sued!
The success of indemnification means that the FUD terrorists have already won...
Liberal (adj.): Free from bigotry; open to progress; tolerant of others.
Run BSD.
Because she's functionally illiterate?
The Independent: Reverend Spooner Arrested in Friar Tuck Incident - ISIHAC, Historical Headlines
If those insurers cover the kernel (or any other ubiquitous component) then they're a joke, IMHO.
Let's say Linus blunders and commits in something that really violates a patent. Now when the patent holder sues everybody... it's like if all the cars crashed in an instant for a car insurer. The insurance company would go broke in a second.
Am i missing something?
Just once I'd like to see Open Source apps that didn't pretend to be a cheap knock-off of someone else's successful product.
Why is it that FS developers insist on following Microsoft's lead? .NET is a stupid idea, and .Mono even worse - why would you build a virtual machine if it would never be ported to other platforms, and why spend effort optimizing said machine when modern compilers can already generate much faster code?
Oh, I know - the challenge. Rather than writing code which actually solves problems, I'd rather reinvent the wheel, learn how to everything in this New! SHINY! Language (tm), just so my programs will run more slowly on fewer platforms.
And .Mono is insane. GCC is a very mature, very good compiler, and it will be a long, long time before any virtual machine can come close to the performance of gcc-generated code. Why would you waste talent on a project which is going to produce something worse than what you've already got? Because it's popular? Because Microsoft is doing it? Think about it - Free Software will never be a leader as long as they look to an unethical corporation for ideas. Microsoft implements ideas, but it doesn't create them.
Okay, flame away.
The society for a thought-free internet welcomes you.
I sure that large IT companies would love it if they could remove all the smaller competitors.
I wonder if comporate consumers are ever motivated by price competition? Hmm...
Matt
Microsoft, and Microsoft alone (supposedly) indemnifies their software. even if they try to disclaim the hell out of it, they'll still foot the legal bill even if the court doesn't buy it.
Is it me, or does having all these companies offering indemnification services for (roughly) the same product look like a market being re-opened up to competition again? Even when it comes to legal services for something you probably don't need, you STILL have more choices with Linux than with Windows.
SCO plans to continue to threaten people who know very little about the state of its information technology shops.
First thing I think this means is that SCO is threatening companies that are not well informed about the history of Unix and Linux. And if what the experts of Unix and Linux are saying SCO is one of those companies that doesn't fully understand the history of Unix and Linux. If this is truly the case than I would expect the lawsuit SCO should file would be against SCO.
If this were to happen than SCO would become a proverbial Oroboros feeding its need to sue off of itself. They could sue for eternity and never cause worry to the rest of the world.
OK so maybe I'm stretching it with that last one but like I said I'm still half way in my dream state so maybe non of this makes sense but it's funny as hell to me.
"Napalm is nature's toothpaste" - Chef Brian
Last Wednesday, around 11 am, SCOX suddenly went up to $6.25, in heavy trading. Somebody made that happen. It wasn't a random event. But whomever did it (and it could be the announced SCO stock buyback program) didn't put in enough money to keep the price up, and it started sliding back down that afternoon. Today, Friday, it's back to where it was at the beginning of the week, close to $5. The trading volume is back down, too.
We've seen a few attempts by SCO to prop up their stock. Each one has failed. Except to correct for the distortions caused by the buyback program, the market is ignoring SCOX. Volume is far below what it was last year. When the legal mess starts to generate some decisions, we'll see some activity, but until then, it looks like nothing much will happen.
OH GOD HOW DID WE BECOME SO BORING> MAKE IT STOP MAKE IT STOP MAKE IT STOP MAKE IT STOP
a aa aaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaa aaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaa aaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaa
aaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaa
Do Microsoft, Oracle, and so on indemnify you?
SCO's beef is technically with the Linux kernel 2.4 and newer. Solution: Dust off an old distro with Kernel 2.2 and run that.
The whole deal revolves around SCO's allegations that IBM borrowed copyrighted Unix code and incorporated it into Linux to improve Unix program compatibility, thus hurting SCO's business. SCO would be severely impacted if the Unix-alike, Linux, were now Just-Like Unix, and people no longer needed to pay for a genuine Unix solution - they could get it for free, or perhaps with some IBM hardware instead of AIX.
SCO sure sounds stupid with all of the boneheaded lawsuits, but maybe, just maybe they didn't just pull this lawsuit with IBM, out of their ass. The allegedly infringing IBM contributions presumably appear in some 2.3 beta on the way to 2.4. So... do what you want to do with a 2.2 build for all it's worth.
Microsoft did just sit there once upon a time. I don't remember the details, the name of the product or company, but a year or two ago, some company sued Microsoft and won because Microsoft had appropriated their code in some manner. I think Microsoft had bought non-transferable rights to the output of the program, and this company insisted that Microsoft customers had to purchase their own licenses to use the output of the program, whereas Microsoft had resold it as if the rights transferred. Microsoft explicitly said they would not indemnify their customers, who the other company had threatened to sue.
How far things went, whether Microsoft changed their, mind, whether they simply bought up the other company, etc etc etc, I do not remember. But I do remember the big stink when it came out they weren't going to indemnify their own customers.
Infuriate left and right
Right Here, as another poster has listed.
Infuriate left and right
Why don't you name something truly innovative that Microsoft has developed all on their own? I mean truly distinctive, different, revolutionary. Not these incremental "improvments" of .NOT and ActiveX and Boband papers flying from a folder into a trash can while delete works its magic.
Betcha can't do it. Not even one.
Infuriate left and right