Slashdot Mirror
RMS Weighs In On SPF/Sender-ID License
NW writes "In a recent message to the MARID list RMS weighs in on the licensing issues of Sender-ID/SPF and Microsoft:
'Microsoft's Sender-ID license is directly incompatible with free
software regardless of which free software license is used. Free
software means users are free to run it, study and modify the source,
and to redistribute it with or without changes. Free to do so means
there is no requirement to ask or tell anyone that you are doing so.'" "MARID" stands for MTA Authorization Records in DNS; here's the IETF MARID working group's charter. (Read more below.)
Stallman's message continues: "The Microsoft license for Sender-ID directly forbids release of software with all these freedoms, so it is impossible for any program to be free software under Microsoft's regime. I've been expecting to see something like this ever since Gates started talking about spam. This license is an example of Microsoft's strategy for killing off free software as an alternative to Windows. Microsoft first patents something, then incorporates it into a format or protocol, then tries to make it de rigueur while excluding those it wishes to exclude. In the absence of resistance, Microsoft has a good chance of imposing whatever standards it likes. Let us, therefore, resist it here and now."
I've STFC (Scanned the charter) and from what I can gather, it's simply a new record type on the DNS'. Surely the MTA would then query the DNS responsible for the domain for this record, and act accordingly; so what's the problem? I'm sure Sendmail can be made fully capable of this, or any other lookup tool.
Code, Hardware, stuff like that.
The battle lines are drawn. Good vs Evil.
What are you listening to? (http://megamanic.blogetery.com/)
So if that's true, how will Mac users or *nix admins in any size company be able to read their E-mails?
who | grep -i blond | date cd ~; unzip; touch; strip; finger; mount; gasp; yes; uptime; umount; sleep
I'm surprised the author didn't link directly to Microsoft as well...here's the missing link.
If we let Microsoft, through some machinations during our anti-spam re-engineering or in any other manner, take any measure of control over what has, until now, been an 100% open-standard email infrastructure, email will be fragmented and ultimately ruined, far worse than any cadre of spammers could ruin it.
It is trivial to do what "caller ID" does in an open fashion. And it is absolutely crucial that we do exactly that. No "complicated" licenses, no fancy agreements, no lawyers. Just pick a standard, and follow it.
Letting Microsoft have any involvement in the email infrastructure - other than using it - will be a disaster. And it wll be all the more terrible because of how easily it can be prevented.
Want to Know How to Cheat the GPL? Read On!
Why cant RMS just try to improve the situation, make a counteroffering, give suggestions instead of ranting about everything that is not exactly along his line of view?
Free as in speech is what we want.
Not free as in beer.
IANAL and don't want to be, but I always wondered what were the implications of this RFC (which is about intellectual property rights & IETF publications)
#include "coucou.h"
Newsflash: OSS community dissatisfied with Microsoft's actions. The shock caused by this devastatingly original sentiment is almost immeasurable.
Yeah, it doesn't exactly mean Open Source.
See http://www.gnu.org/philosophy/free-sw.html for the definition of Free Software.
When RMS talks about 'Free Software', he means 'Free' as in 'freedom', not 'free' as in 'costs nothing'.
Not exactly. To the Free Software Foundation, "Free" has *always* been about being "open source" as you would put it. "Open source" was a relatively recent term adopted by people because people kept confusing zero cost with freedom to modify the source code and do what you want with it. RMS has been using the term "free" to describe that for decades.
MARID means sick in my language.. so it
does sound funny to me.
SCIREV.NET - fanfics,reviews & more
So, the license RMS is ranting about doesn't apply, and there doesn't appear to be another license on the Microsoft site. Having said that the Microsoft license does not stop the distribution of source, in fact there's a specific clause allowing it (2.2), you just have to include a paragraph in the source code. Nor does RMS say what his problem is, aside from "Grrr, it's Microsoft".
Of course the SPF implementation is still "non-licensed", there's no mention of restrictions, although they do point out there are patents all over the anti-spam arena.
But hey, we don't expect people to look at this stuff, lets just add yet another protocol.
He's not asking for advice on what he *should* have done, you insensitive clod. Damage control!
its probably a good thing. If anyone could amend the software, they could, for example, add a section that says 'but accpet all spam.com emails'.
I understood that the protocol was to be made into a standard, so how would changing the software help us?
The Licence (pdf) says that MS grants you a non-transferable licence to use it and sell it on to end-users.
If you do redistribute the source code, its fine, but you must add a clause to your licence that says the software may contain IP owned by MS, and that anyone obtaining such derived source must go ask MS for permission to use their bits directly - you can't give that away.
So I can only surmise that when RMS says it is incompatible with free software, he means the GPL. It is acceptable to use the software, look at it, but you can give it to someone else, but they cannot take away the terms MS set. Sounds a bit like the GPL, but with different terms. (hey RMS, you don't want to agree to those terms, you don't have to use the software).
Here's the link to the page for the actual license agreement in question - click on the "Royalty-Free Caller ID for E-Mail Specification License Agreement" link about halfway down to get the PDF.
Galileo: "The Earth revolves around the Sun!"
Score: -1 100% Flamebait
It is absolutely essential that standards like this are open and available to everyone (including microsoft's competition). I haven't read the microsoft license yet, but if it indeed creates any type of obstruction for open-source (or any other) software, it should be soundly rejected.
It isn't clear to me from this story or the comments exactly how Microsoft would claim any type of control here. Can somebody clue me in?
MakePassword.com Mp3 Blog
Just a little contrast for those who read only one level deep.
Mars
So, we have Microsoft in the distinctly red corner with their proprietary standard.
Let's face it, as vocal as the OSS community is these days, there's not a lot that can be done to stop Microsoft from doing whatever the hell they like, so long as it's legal(!). Sure, sendmail is OSS software, but I got the impression that SPF is pretty much independent of the MTA software anyway.
But, in the blue corner, we have plenty of heavyweight companies who are big on Linux and big on e-mail who have teams of lawyers that have undoutedbly been over this license already, and found the problems.
We have IBM, the people who make Lotus Notes, which is still pretty widely used, IIRC. We have Novell, who now own SuSE/Ximian and are betting the shop on Linux, who produce NetWare. We also have Sun, who are getting vocal on OSS, which produces Solaris, which seems to power a large proportion of MTAs around the globe.
The best defense, surely, is to make sure these companies understand the issues with SPF, and don't implement it in their own products. After all, Microsoft won't get that far without support from other companies, since much as they'd like to, they don't currently control the world's Internet server market....
Too early in the morning I guess... ;-)
Galileo: "The Earth revolves around the Sun!"
Score: -1 100% Flamebait
As the inventor, no doubt MS will hold the patent. So you have to license it, whether for GPL or otherwise.
If the license isn't GPL compatible then GPL software can't use it.
The kind of freedom RMS is referring to can't be taken away or used to discriminate between users - free as in zero price can be.
See how James Ewing of Sveasoft treats people who follow the GPL!
Posting binaries without source is a violation of the spirit and letter of the GPL. Ewing is right to go after that jerk.
Unfortunately, that message was screwed by the GPL licence - if he'd made the LGPL first, it would have been a lot better now.
... we'd all be using IPX/SPX :)
'do what you want with it' isn't really appropriate under the GPL as you can't issue your work under a different licence. With LGPL you can, and still keep the freedoms of the original source.
Imagine a world where the TCP/IP implementation wasn't issued under a BSD licence
The M$'s contracts are illegal in many countries.
open4free ©
"If you do redistribute the source code, its fine, but you must add a clause to your licence that says the software may contain IP owned by MS, and that anyone obtaining such derived source must go ask MS for permission to use their bits directly - you can't give that away."
Sounds nasty, an obvious play would be to get this non-standard widely accepted then for MS to refuse permission to new licensee's unless they pay a fee.
That would then lock out free software.
Because you need their permission to get the license, they can tack whetever terms onto the deal they like in order for you to obtain that permission.
Another popular trick of MS's is to claim that a new version of software is a different product. They have done this several times, most famously when they said Windows 98 isn't Windows 95.
So you could find that Sendmail future versions get cut out aswell.
Best to avoid this one.
I have personally met several of the Microsoft employees who are doing the work on Sender-ID. I have ever reason to beleive that they are working in good faith to try and make sure this technology can be deployed by everyone, including GPLed software. The problem is that Microsoft is a huge company and things like the licensing issue are handled by Microsoft lawyers, not the people directly involved in SenderID.
I know that the SenderID MS folks are working with MS lawyers, and the MS lawyers are working with lawyers from the FSF, Open Source Initiative (OSI), and IBM (for postfix). The IETF working group co-chair has given MS until early August to get this problem resolved.
Personally, I'm going to give Microsoft lawyers a little more time before I try to outright kill the SenderID RFC.
SPF support for most open source mail servers can be found at libspf2.
"Strange, I thought free meant you didn't have to pay for it. 'Free' does not necessarily mean open source."
Free as in freedom. To be free of cost, doesn't just mean cash. Free to use, free to innovate, free to copy, free to acquire.
Many seem to think that freedom to choose means the choice between budweiser and heinekin, but free is being able to brew your own and share it with your friends or sell it if you choose.
Finally, now I know what to think about all this.
:P
I was beginning to wonder if I was supposed to think MS had done something right for once...
~/ssh slashdot.org ssh: connect to host slashdot.org port 22: too many beers
First they helped the spammers to gain e-mail adresses with the numerous Outlook worms. Then they again helped the spammers to send their messages through open IIS and Exchange relays. Now they are trying to take over a part of the internet by excluding the open source world from the protocol modifications that shall solve the problem they caused in the first place.
'Microsoft's Sender-ID license is directly incompatible with free software regardless of which free software license is used.
And that is why it will fail. Only Microsoft would be arrogant enough to try to tell the whole world to use it's closed source method. I would say Microsoft is still blissfully ignorant.
The truth is, the open source method will win here - even in spite of Microsoft if for nothing else in that most of the world does NOT use Microsoft for mail relay as it is too insecure and unstable. And those that do have lots of staff to nurse the systems.
With any mail solution, it must be open and universal or it will not work.
Strange, I thought free meant you didn't have to pay for it.
No. Now go away and educate yourself.
That message was not "screwed" by GPL, it was ensured.
Why shouldn't free software be the first to implement secure email? Imagine how much easier Linux advocacy would be if we could say: "SPAM? - I thought that was a Windows problem?..."
Imagine this conversation:
Tech: What's the problem?
User: I get all this SPAM, and I can't read my real email.
Tech: Let me guess, you're still using Windows, right?
User: How'd you know?
Tech: Because you're still getting SPAM. If you upgrade to Linux, which uses the SPAM-blocking mail protocol, your SPAM problem will go away... I'll send you a CD in the mail.
What really irks me is that rather than invent new solutions to existing problems, the free software community waits for a commercial vendor to implement a solution, and then copies it. What we should really be doing at this point is implementing a SPAM-free mail protocol in free software, which, once it became the standard, would force commercial companies into compliance, rather than trying to play a game of dodge-the-patent-lawsuit by copying someone else's improperly done anti-SPAM protocol.
Let's face the facts here, folks: if we wait for Microsoft to implement an anti-SPAM protocol, they'll do it wrong, and the free software world will be stuck trying to ensure compatibility with an interface that is fundamentally broken in the first place.
The society for a thought-free internet welcomes you.
The site Boycott Caller-ID for E-mail has been saying this for a very long time. Since the merging of SPF and Caller-ID into Sender-ID it's been getting a bit out-of-date, but the patent issues are still valid.
æeee!
Free in this context means free as in freedom, not price. As the GNU people like to say, "Think of free speech, not free beer." You can read more about all that at the FSF web site.
Slashdot: Failed Car Analogies. Amateur Lawyering. Anecdote Battles.
Without a truckload of background information, it is hard to figure out how Doug's reply even relates to the parent message by RMS.
RFC 2821 is about the only thing which is referred to in a way that can be looked up without analyzing approximately half of the list archive... but if the intention is to convince the world that M$'s about to do some dastardly deed, and how it could be averted, this information will need to be presented in a much more enlightening and accessible fashion.
censorship devise?
it's whoreabully abused, & quite frankly, infactdead, we think.
makes us think the corepirate nazi swastika lowgo fits here?
ask him rick. tell 'em robbIE?
'Microsoft license does not stop the distribution of source, in fact there's a specific clause allowing it (2.2), you just have to include a paragraph in the source code. Nor does RMS say what his problem is, aside from "Grrr, it's Microsoft". '
m _s enderid.mspx
The problem *IS* that paragraph, it makes the license extendable, since anyone who wants to use/give away/do anything with, it in future would have to get permission from MS.
"Our provision of this source code does not include any licenses or any other rights to you under any Microsoft intellectual property. If you would like a license from Microsoft you need to contact Microsoft directly"
There is no limit set on that permission, so MS can change the license terms using that paragraph at any time for any future product.
"So, the license RMS is ranting about doesn't apply"
Yes it does (Published 23rd June 2004):
http://www.microsoft.com/mscorp/twc/privacy/spa
"If you are a software developer and are interested in implementing this specification in software, please review the terms of the Caller ID for E-Mail Implementation License before you begin, as the patent license discusses the rights that Microsoft would grant you or your organization."
He wrote emacs. That's proof enough that he's crazy without making stuff up.
You're also deliberately misunderstanding the difference between a standard and an implementaiton of that standard. The TCP/IP protocol is completely open, and anyone can write any sort of implementation they want to. Which is kind of the point of this whole thread. MS's proposed "standard" isn't necessarially open, they've got patents on many of the critical aspects. Today they say "oh, don't worry about those patents, they're just a formality, we'll never charge a license fee for that. And we'll certainly never outright deny licensing to our competitors, never!", tomorrow what keeps them from demanding fees for using their patented ideas? Bugger that. The underlying protocols *must* be completely open and completely free of patents or else we run into massive incompatibility problems, fragmented internet, etc. Your mention of the GPL is simply to allow you to take a cheap swipe at RMS, a fetish I'll admit I don't see the attraction of.
Seriously, do you *want* to see us go back to the bad old days of multiple, incompatible, network communication? Because that's what MS is leading us to.
"Mission Accomplished" -- George W. Bush May 1, 2003
he's been cross-posting this shit all day...
They *should* have called it "Freedom Software" rather than hijacking the word free and beating everyone over the head with insane "free as in..." rants when people are rightly confused.
Sure, it's big with Exchange in corporate enterprises and in the client arena with Outlook & Outlook express.
But sendmail running on some UNIX-type server provides the majority of backbone email routing, especially at ISP level, and DNS is invariably done with BIND on other UNIX boxes. This does not strike me as an area that MS have much capability of muscling in on with a proprietary protocol.
Or am I missing something here?
Gentoo Linux - another day, another USE flag.
From: Ted Hardie
Subject: Regarding the recent licensing thread
To: ietf-mxcomp@imc.org
Date: Mon, 19 Jul 2004 11:27:41 -0700
Some points on the recent licensing postings:
1) This discussion has been unprofessional in the extreme. Contributors to this working group have been accused of failing in a duty they did perform, and that is rude and unproductive. The Microsoft IPR filing related to callerid was posted with their first ID, which is exactly what is required. Those who have been waiting for such a statement either don't understand the process or have not been paying attention, and their acting offended about things now carries no weight. A refresh with the new name and some details on coverage is warranted for clarity before the documents go to the RFC editor, but that is a paper trail issue, not substantive.
2) The IETF is an engineering body, and it makes engineering decisions. It cares about licensing only as it affects the ability to implement and deploy a standard. Religious opinions on the sanctity of specific license texts belong elsewhere. The sudden appearance of this as a separate topic without reference to the engineering choices misses the point of how the IETF makes these calls: in the context of the engineering decisions. Comments based solely on the licensing terms without regard to the engineering choices they affect *do not speak to the question working groups need to decide*. The sudden appearance of new working group participants after postings inviting them to comment is welcome *if they contribute to the engineering discussion*. But if you are here to comment on licensing outside of the engineering context, you are wasting your electrons.
3) The IETF has published standards with defensive patents many times, and the use of a reciprocal/royalty free license is a common way for contributors to protect themselves from later claims while still encouraging the creation of an interoperable, open standard. Trying to persuade the working group that something is outside the norm when the IETF IPR page is full of contrary examples insults the intelligence of the group, as well as insulting the contributors who are providing a royalty free license.
4) Armchair lawyers often assume things about patents and licensing which aren't true. Get a real lawyer to read things you're concerned about and have them talk to the contributor's lawyers about things that concern you. The creation of a licensed "libipr" called by other applications may be all it takes to have licenses with severe restrictions co-exist with royalty free/reciprocal licenses; this isn't something you can assume one way or the other. You really have to have professionals check. And when you find things that concern you, be aware that this license isn't responsible for ways you may already have bound yourself; if you signed an agreement with HP Lovecraft that said "I will only acknowledge Chthulhu in my code", don't blame Microsoft for requiring an IPR notice. Take it up with the Elder Gods.
5) Generic rants about patents belong on your national I-hate-the-patent-office list. Rants about the IETF's standing decision *against* requiring a specific license or class of licenses belong on the IPR list, but are very likely to be redundant to arguments already made. Read the archives.
New drafts are now out, waiting for careful review. I urge the working group to review them carefully and to focus on how they can be interpreted, coded, and deployed. We have a lot of work to do.
Ted Hardie
lgpl is for libraries you include, but don't modify. it is not entirely clear from your post that you understand that.
So you ask, why not run spam blocking on all open source MTAs? Simple: it takes two to tango. Email is a communication medium, emphasis on that prefix "co-". Your new Final Ultimate Solution to the Spam Problem is useless if the other guy's server doesn't support your protocol. And I suspect most of us are unwilling to cut off all email with half of our friends/family/business just because their mail admin isn't as smart as yours. Anyone with that philosophy is already using SPEWS.
I know you are trolling but I find it ironic that the GPL spends a lot of time limiting freedoms (ie viral licensing, giving up copyright, etc), rather than providing them. Everytime I hear RMS speak he talks of "freedom," probably as much as GWB does.
Laboratree - Scientific collaboration based on OpenSocial.
That will eventually lead you to Microsoft's page on Sender ID. The actual licence agreement is halfway down the page (they refer to it as caller id and sender id interchangeably it seems).
If you do read the licence agreement you'll see that not only does an MTA developer have to sign/return it but so does an end-user _if_ and _only_ _if_ they want the source to their MTA.
That is, just about everyone. Additionally the language in the license explicitly makes it impossible to use with LGPL/GPL'd MTAs.
OSS is fine, but you have to come to the realization that 99/100 companies will not be able to make money off of the software, and the other company barely makes enough to get by on.
enough said
Giving up copyright? You mean the option to give up copyright to the FSF? It's an option, asshole. You're perfectly free not to take it. Hundreds of people don't.
The GPL is more free than a standard copyright situation, which doesn't allow copying at all. Stop the bullshit.
I think we need to take a look at where forged sender spam comes from before we are willing to consider trying to detect forgery as a means to detect a message as being spam. In the past, small time spammers did forgery to avoid flooding their one mailbox. Now days, bigger spammers have domain names (often thousands of them) and don't have to worry about that issue. But there are still spammers doing forgery. Most of these using the infected zombie machines on insecure home computers often connected 24x7 via "always on" DSL or Cable.
If the providers hosting these users would:
- block outbound port 25 from these users (with certain exceptions)
- require SMTP AUTH to log in to their provided mail server
- rate limit mail sent through that mail server (for example no more than 30 messages per hour)
then this would go a long way to defeat the utilization of these infected machines as a spamming tool.I mentioned an exception to the port 25 blocking. They should simply allow port 25 for anyone who mentions certain keywords indicating they need it. While there is some spamming that originates at the DSL or Cable user, that doesn't account for much right now. So sure, someone intent on spamming can call in to customer support and ask "please enable SMTP for my access account". But they would be fewer in number than those who ask the same because they just want to run their own home mail server without having to forward through the ISP's mail server. And one simple way to do this is to ship DSL/Cable modems with SMTP access disabled except for the provider mail servers. And manufacturers could do that if providers would set up private IP addresses to access their mail servers (so by default SMTP would be allowed to 10.0.0.0/8, 172.16.0.0/12, 169.254.0.0/16 and 192.168.0.0/16). Someone who wanted to run their own mail server could simple change the settings. The average user who lets machines become infected would know nothing about it.
Like anything else, this isn't a solution to spam. But it is a viable alternative to forgery detection in terms of catching most of the spam from most of the sources being used by the spammers that do use sender address forgery.
now we need to go OSS in diesel cars
oh shut the fuck up man.
The GPL limits freedoms to ensure that those freedoms arn't all taken away later down the road. If you can't understand that, cut your balls off because you're a descrace to the human race and we don't want any more of you.
GWB might be bad, but man is Kerry a douchebag.
"ie viral licensing, giving up copyright"
If you don't like being infected with the GPL, you're perfectly free to reinvent the wheel and rewrite whatever GPLed code you were thinking of using. Or contact the author and cut a deal.
You'd have to do either of those anyway if you wanted to use [insert proprietary licensed code here] for any reason at all.
And mowhere does the GPL force anyone to give up any copyright at all, period.
The FSF does want you to assign your copyrights to them if you want your code included in a GNU project, but that's a different matter.
"...If you upgrade to Linux, which uses the SPAM-blocking mail protocol, your SPAM problem will go away... I'll send you a CD in the mail..."
And BTW, you can't run any of the apps you used to run (beacause we're talking about a clueless M$ W1nd0w$ running n3wb13, here, right? No clue about Wine or somesuch...).
The response would be: "Fuck That! I'll tolerate the spam. I need Photoshop or whatever - I'm pulling in $300/day using that package and you're taking it away from me!"
People put their work under the GPL not out of alturism, but in the expectation that they will get source code in return.
Personally, I release stuff under GPL because I already wrote it, don't plan to sell it and want it to be of maximum use to other people. So far, nobody sent me any code.
The TCP/IP protocol is completely open, and anyone can write any sort of implementation they want to.
Let's say, there is Novell's implementation of IPX and GPL implementation of TCP/IP. I am in charge of Windows development and want to have a working network stack ASAP. If I want to use IPX, I can pay Novell $N for source license and use the code without any restrictions that I worry about. If I go with GPL, I have to release my source code and find a new business model, since I will no longer be able to sell binary copies of my stuff without a serious support contract.
Only takes a second to decide, and if it happened like that, today Linux would only talk to most of Internet through Samba-like hacks of closed source protocols, RMS wouldn't use Internet, and slashdot would be exhaulting the virtues of TCP/IP.
Standards should be free and have public domain reference implementations, period. Keep both Microsoft and RMS out of it!
"1) This discussion has been unprofessional in the extreme. "
Get a thicker skin.
"2) The IETF is an engineering body, and it makes engineering decisions. It cares about licensing only as it affects the ability to implement and deploy a standard. "
The wording requires you get a license from Microsoft and that any future products require a license too. So clearly this problem comes under the "ability to implement" part of the sentence.
3) There is no such thing as a 'defensive' patent. Ted cannot see into the mind of Microsoft and determine their intent is to only use it for defence. Therefore he cannot make this statement with any substance behind it.
4) Non substantial argument. The license is very clear, show me a lawyer that says otherwise.
5) Agreed.
"New drafts are now out, waiting for careful review. I urge the working group to review them carefully and to focus on how they can be interpreted, coded, and deployed. We have a lot of work to do. "
Oh boy, we have a spec that has issues XYZ,
he's telling them to look at X and only X. i.e. to ignore Y & Z and make a decision based on only part of the information.
IP rights are retained by default unless waived licensed or assigned.
So show me where Microsoft waives their rights to allow anyone to use Microsoft's part of the merged spec!
If you don't like being infected with the GPL, you're perfectly free to reinvent the wheel and rewrite whatever GPLed code you were thinking of using. Or contact the author and cut a deal.
If GPLed code were truely "free", this wouldn't be necessary.
It is if you are a hot chick.
He's such a zealot that he's going to trash anything that's not completely open and free, even if it has the potential to improve a serious situation.
Well yes, the GPL does deprive us of that most vital and precious of our freedoms - the freedom to use other people's hard work in order to make unfree software that deprives those foolish enough to use it of their freedom.
It was a dark day for freedom indeed when RMS invented the GPL.
If society were truely free then nobody would object if I were to kidnap you and torture you to death with cocktail sticks and peanut butter. I think once you realize that freedom of speech does not excuse threats or liable and that free software means that everybody should lose the right to withhold modifications, much like I lose the right to murder you just as others lose the right to murder me, that then we will talk about freedom.
I'm sure the Microsoft lawyers have ALREADY evaluated the various Open Source licenses so it shouldn't take them long to just pick one.
The coders that are working on this at Microsoft are NOT the ones that will be choosing the license.
The LAWYERS working for Microsoft will be working on an approach that is BEST FOR MICROSOFT. (read that as "control").
It all comes down to a matter of priorities.
Microsoft's FIRST priority is to establish control.
Microsoft's SECOND priority is to stop spam.
If Microsoft was more worried about stopping spam then establishing control, you would not see the lawyers taking this much time to meet with everyone. They know what licenses would be the easiest to have accepted.
Here's a url with a list of them.
http://www.gnu.org/philosophy/license-list.html
Microsoft's lawyers can quickly pick one and that discussion would be over.
"We asked Harry and Jim to take up the licensing issue with their lawyers about a WEEK AGO. "
2 53 .shtml
Your RFC is dated 20th July 2004. 5 days ago.
Later on you say this:
"Now less than 24 hours after Microsoft go off to talk with their lawyers "
Which is it a week or 24 hours? It looks like you put out the RFC, people complained about the licensing issue, and now you're in ass covering mode.
Yet this problem was known about for a long time:
Here's "Eben Moglen -- professor of law at Columbia Law School and General Counsel for the Free Software Foundation " complaining about the patent and license problems with Caller ID from late FEBRUARY.
http://www.newsforge.com/software/04/02/26/1448
So it's more BSD-like then, big deal.
The BSD abandoned that clause for a reason. But Microsoft's license actually goes much further. If you distribute source code under a BSD license, the recipient still has no rights to use the software unless they contact Microsoft and get permission specifically. The license requires you to put this notice on any source code that implements SPF:
Which directly contradicts the very definition of Open Source. In other words, Microsoft's license is incompatible with all open source licenses!
Why is that different to the GPL? They're both licences that apply to the use of software. Without a license, you can't legally use any non-public domain software. The GPL is one such license, this is another.
You need a license to use patented technology. You do not need a license to use copyrighted software. Copyright only gives the author a monopoly on:
Note that the right to use is not in there. The GPL specifically allows you to decline the license. You may still go ahead and use the software even after declining the license. The GPL simply grants you the six rights listed above (with certain conditions).
Microsoft's license, however, grants a revocable right to use their patents. You could distribute SPF software under a BSD license, and Microsoft could revoke anyone's right to use the patent at any time (even if you already have the software, use it, and depend on it).
Big deal. Why does everything have to be GPL compatible? What would be wrong with, say, a BSD-style license for this particular application?
Even though you could distribute SPF software under a BSD license, you could not redistribute the software without explicit permission from Microsoft. That pretty much excludes the open source, bazaar style of development.
Make no mistake about it. Microsoft wants to shut down open source software. What better way than to prohibit open source software from doing that which people most use computers for, to send and receive email?
Patently false. Redhat, Suse, etc. are making Money. Likewise, so have the BSD distros in the past. In fact, they would still be making loads of money except for ATT's legal attack on them (while it had more legal footing than does SCO/MS/Sun's against Linux).
OSS is fine, but you have to come to the realization that 99/100 companies will not be able to make money off of the software, and the other company barely makes enough to get by on.I always find it funny that so many would make statements like this, while ignoring the history of Operating systems, and the internet. Loads of money to be made here, once the US government quits trying to push MS.
I prefer the "u" in honour as it seems to be missing these days.
Re-read #2, #3 and #4.
IETF does not concern itself with patents/licenses and has published standards that include patents and you don't know what patents are, anyway.
Bugger off. The patents and the licensing are VERY IMPORTANT to the implementation of the standard. Otherwise, you're writing a standard that won't be implemented. Why do that?
"Comments based solely on the licensing terms without regard to the engineering choices they affect *do not speak to the question working groups need to decide*."
Yes they do. Again, what good is a standard that no one will implement?
Following your logic, noone would be interested in buyign the works of old writers or something like the bible..
Of course you cannot make money by trying to sell the exact same thign that peopel can get for free next door, so you'll have to do something to make peopel willing to buy, being it a nice leather binding and quality of print for a book and things like included hardcopy documentation and support for software.
So.. if your business model is to sell junk to people and never look at them again then Free software won't work for you..
> Personally, I release stuff under GPL because I already wrote it, don't plan to sell it and want it to be of maximum use to other people.
THen use a BSD/X11 style license. the GPL specifically adds a bit of protection to those, takign away one specific (and by many people undesired) use, that of including your code in a program that is not licensed under the GPL.
This might be a desirable effect for many, and it is definitely one of the arguments for using the GPL instead of another license in many cases (not all, TCP/IP is a good example of why BSD/X11 style licenses work very well)
> So far, nobody sent me any code.
Why should they? the GPL does not require that unless people happen to be sending you modified versions of the binaries also.
If you want peopel to send their patches to you, go for something similar to the Apple Public License.
It is a bit of a problem that many people use the GPL ebcause they are told it is 'good' while not havign a clue as to why it is good and what the consequences are.
> The kind of freedom RMS is referring to can't be taken away or used to discriminate between users
What I find interestign about this is that as soon as we talk about 'non discrimination' related laws in EUrope, that is called 'lack of freedom' by many from the USA.. as soon as it comes to GPL freedom, enforcing anti discriminative rules is 'protecting freedom'.
I know, off topic, but I just found it an interesting observation.
Let someone else innovate, steal the idea, clone it and compete against them without rewarding them for their work.
Name me five open source products that aren't simply a clone of a commercial products.
If you were blocking sigs, you wouldn't have to read this.
KarmaMB84 since you probably live in Communist China I can understand how the word FREE would confuse you!
Marid is an Arabic name meaning "rebellious". I'm just wondering if this was intentional or a coincidence.
When I learned that the Microsoft additions were being added, and that they were going to use XML, I immediately thought 'hah! bloat! typical microsoft! This data does not require or need or benefit from using XML.'
But, I was wrong. Adding XML allows them to patent it. That is the ONLY reason why they are using XML.
--jeff++
ipv6 is my vpn
if the emails themselves were authenticated.
If the emails themselves are authenticated, the MTAs just become a delivery mechanism (which is actually what they really are today anyway). Which MTA delivers the authenticated email doesn't matter, and therefore MTA authentication doesn't matter.
Authenticating emails would ensure you absolutely known the sender. A spammer wouldn't be anonymous anymore. Once they aren't anonymous anymore, anti-SPAM laws would be very effective at reducing or preventing spam.
Deploying an authentication system with 100% coverage of the Internet population is the problem with this anti-spam solution.
The Internet's nature is peer to peer - 20050301_cs_profs.pdf
This type of scheming is both unprofessional and damaging.
I don't see any "scheming". RMS is warning about what seems to be the legal situation right now. Instead of pointing us to facts that contradict his view, you are just giving us a lot of verbiage, flaming, and accusations, and you are telling us that we should trust you and that everything is going to be right in the end.
This is the machinations of a faction who want to use MARID for conducting a vendetta against Microsoft and don't care what the effect on MARID is.
Your use of the term "vendetta" implies that you are saying that RMS's behavior is motivated by a personal grudge and a desire for revenge against Microsoft. But there is no indication that RMS has any such personal motivations--his position is consistent with the criteria he has previously applied to evaluating other standards. If anything is "unprofessional" here, it's your accusations against him.
Your standard has run into negative publicity because of the way the standards body communicated the legal situation, and that's your problem, not his. As soon as you provide convincing evidence that the legal situation surrounding MARID is bulletproof, then RMS will stop complaining about it.
The arguments over whether security can only come from obscurity are old, and need not be rehashed.
And this is very unlike the GPL.
RMS does seem to understand the GPL...
"What really irks me is that rather than invent new solutions to existing problems, the free software community waits for a commercial vendor to implement a solution, and then copies it. "
Relax. It didn't happen.
SPF came from the OSS community and is in use.
Its proposed merged form came later.
You won't read your emails, or you won't be a *nix or Mac user, period.
on showering
RMS never weighed in on SOAP.
Their priority is to pave the way for "legitimate" unsolicited commercial email and control of the that definition. They have argued at length that their spam is legitimate but others are not. That would be part of the exclusion that RMS is talking about and it's ultimate goal, control and the fees you can collect with that control.
I would not attribute good faith to a company that has so often demonstrated such bad faith.
Friends don't help friends install M$ junk.
This is /. - you're not allowed to use sarcasm.
TWW
"Encyclopedia" is to "Wikipedia" what "Library" is to "Some people at a bus stop"
I honestly think a well tuned spam filter e.g. spamassasin does the job very well without all the inherent problems sender ID/SPF brings along. I just can't see the need for that. Anyone else who thinks the same way?
Read what the RISKS Digest has to say about SPF:
http://catless.ncl.ac.uk/Risks/23.21.html#subj7.1
http://catless.ncl.ac.uk/Risks/23.21.html#subj8.1
http://catless.ncl.ac.uk/Risks/23.21.html#subj9.1
http://catless.ncl.ac.uk/Risks/23.23.html#subj8.1
http://catless.ncl.ac.uk/Risks/23.23.html#subj9.1
why? i wouldn't have the slightest idea what the awkwardly-named "freedom software" would be. is it a microsoft application for managing my freedom? is it "french software" before the french became official douchebags?
seems more sensible to me to pick the exact word you need to describe it, even if it has another meaning in different contexts.
pr0n - keeping monitor glass spotless since 1981.
>Let's say, there is Novell's implementation of IPX and GPL implementation of TCP/IP ... If I go with GPL, I have to release my source code and find a new business model, since I will no longer be able to sell binary copies of my stuff without a serious support contract.
While I agree with your point that having a public domain reference implementation is a good idea, this case would not force people to GPL their code. They could look at the GPL version and work out the workings of TCP/IP from that and then get someone else to code a different version independantly of the GPLed implementation. It forces you do do some work yourself but you can still keep your code closed and use the standard for free (subject to it not being patented!).
as a matter of fact, just what he's forgotten, is likely more relevant to communications/commerce, than everybodIE in the kingdumb of payper liesense/stock markup FraUD softwar gangster felon execrable, .combined?
so, whois ready for the gnu millennium?
never mind robbIE's fauxking PostBlock censorship devise, it's still under development?
Whenever someone like RMS tries to redefine a word which is so ingrained in popular culture to mean "free as in you don't have to pay for it", he's asking for trouble.
It's arrogance for him to think that his definition of "free" is known enough to convey the message without an explanation.
To 99% of the people out there, free means "I don't have to pay for it". Those 99% of people could care less about the source code. They want the software free.
If a company is willing to offer software free but is not willing to release source code, most people would be happy. The only ones objecting would be those who want to tell those 99% what is good for them.
What's next, Open Source Pride Parade down main? "We're here, we're freer than beer, get used to it"?
As many thoughtful people seem to know.
A /s mtp-spf-is-harmful.html#ISPLockIn
The "war on spam" doesn't mean that destroying the current structure of internet mail is justified.
http://homepages.tesco.net/~J.deBoynePollard/FG
IM2000 is the way.
Copyright law granted the holder control over distribution and some forms of copying. It does NOT grant any control over how the material is used beyond copying and distributing!
The gpl works entirely within copyright law, you don't have to agree to it to use the software because you don't need someone to GIVE you RIGHTS YOU ALREADY HAVE. The only reason you EVER don't have the right to use a copyrighted work is if you obtained it illegally.
This is why most copyrighted works aren't licensed at all, books, cd's, etc.
And outside the US it'd be "French Software", right?
Only if they wanted people to think that they had no inkling of correct grammar. "Freedom software" is a lousy phrase. The fact that you can't handle the existence of homographs in the English language is not a problem for the FSF.
The fact that you can't handle the existence of homographs in the English language is not a problem for the FSF.
Many people can't handle homographs in the English language. OK, not the FSF's problem. It's not their problem either that few people subscribe to their philosophies.
If Microsoft were the only company to implement this protocol, it would be more effective than they ever dreamed:
Microsoft should be congratulated, not censured, for coming up with such a scheme to help edge detection of spam.
Well, since free-as-in-beer has never existed in the real world, there should be no confusion.
So, when RMS uses free software as an excuse to preach responsible behavior, I'm not going go complain.
Free-as-in-beer is a lie, or, at best, sleight of hand. People need to be reminded.
Most hot chicks I know don't drink beer, so what is the point of free beer to a hot chick?
You can't win Darth. If you mod me down, I shall become more powerful than you could possibly imagine
http://dictionary.reference.com/search?q=free
1. Not imprisoned or enslaved; being at liberty.