Slashdot Mirror
SourceForge Clarifies Denial of Site Access
Recently there were some complaints from certain users outside the US stating that they were no longer able to access SourceForge.net. SF.net (who shares a corporate overlord with Slashdot) has outlined the reasons for these bans, and until someone with sufficient power to alter US law or the lists governing who is allowed to access what data from where, there is unlikely to be a change in these bans. It is worth noting that SF.net is not alone in these difficulties, as the same problems have been reported from other repositories, like Google Code. "As one of the first companies to promote the adoption and distribution of free and open source software, and one that still puts open source at the center of its corporate ideals, restrictions on the free flow of information rub us the wrong way. However, in addition to participating in the open source community, we also live in the real world, and are governed by the laws of the country in which we are located. Our need to follow those laws supersedes any wishes we might have to make our community as inclusive as possible. The possible penalties for violating these restrictions include fines and imprisonment. Other hosting companies based in the US have similar legal and technical restrictions in place."
If this rubs SF.net the wrong way so much, why do they continue to operate in the US? Why is SF.net specifically reinforcing their position in the US by adhering to its exclusion of US enemies? Doesn't this make US enemies SF.net enemies?
To follow hatred, you must be blind. Being blind relieves you from following the natural train of thought outlined above. I wonder which step SF.net stopped thinking at. It was probably the "there's more twinkies in the US" stage.
can use a proxy to get at SourceForge.
Best Slashdot Co
Would moving the servers, or serving certain countries from another one (Canada? Europe?) help at all? This is obviously incredibly shitty.
-Matthew Riley "TofuMatt" MacPherson
I have a website
"The Internet interprets censorship as damage and routes around it." -- John Gilmore
With any luck this will force Bin Laden to have to use Windows O.S. and programs from downloads.com to do his twisted interpretation of Allahs will.
There could be some justice in this yet.
*Repent!Quit Your Job!Slack Off!The World Ends Tomorrow and You May Die!
Fond memories of the form that came up for 128-bit browsers back in the 90s. They always used to ask you to provide your information, and certify that you weren't from a bad country. I wish that was a joke; but no. They really did that. Cuz, you know... somebody who was up to no good would actually be deterred by that. Sheesh!
Any 5 year old can tell all you need is 1 guy to come over and get an ISP account. I'm quite sure that all the countries on the list not only have state-of-the-art OSS/FS encryption software, they have pirated closed-source software as well.
For all intensive purposes, "whom" is no longer a word. That begs the question, "who cares"?
I thought he'd left already, but there he was, back again, and Big Billy too !!!
Old characters are returning to the Whitehouse more times than a season finale of Doctor Who. I keep expecting Billie Piper to pop up behind Hilary Clinton.
I don't think it has any problems with connection to any of those countries....
Maybe you can swap servers with Google...:-)
Donte Alistair Anderson Roberts - hi son!
Karma: Chameleon
I'm guessing this has something to do with the Wassenaar Arrangement.
One of our competitors trademarked the term "hypothesis". From now on, we will call them "boneheaded ideas".
...with more Internet censorship. This is ridiculous. Export laws are what they are, but if we're trying to help open up the Internet in these countries, banning them from accessing knowledge hosted on our servers isn't helping one bit.
It is by my will alone my thoughts acquire motion; it is by the juice of the coffee bean that the thoughts acquire speed
Furthermore, it’s a direct violation of the freedoms of Free Software and section 5 of opensource definition:
I hope sf.net reconsider their decision. And at least to stand positively to defend the basic principles of FLOSS.
The US doesn't want to face up to the fact that the only way to keep very serious, proprietary technology out of the hands of hostile states is to severely punish those in the US who facilitate the transfer. So instead, it adopts security theater here much like it pretends that it is fighting child exploitation by posting cops all over chat rooms to entrap people who have a passive interest in jailbait at best instead of actually hunting for real, serious child molesters. This allows the national security hawks to believe that we're "being tough," when in fact if we were tough, we wouldn't give a shit about SF.net, but would instead be executing men like this (just read it before attacking me, it was the first Google search result) without a second thought.
This won't do **anything** except deter some students in these countries who don't know how to find a foreign proxy. It certainly won't stop foreign intelligence officers who try to get actual weapon systems and other serious munitions.
You should seek political asylum in Europe the land of the Real Free. Not bound by legal enslavement or crooked intelligence agencies, yet.
In order to form an immaculate member of a flock of sheep one must, above all, be a sheep.
Early opensource implementations of RSA encryption?
If efforts to stop these failed (and there were efforts, and they did fail), I suspect this will also fail.
Nothing to see here folks. Move along. Move along.
The alternative is to end up like Prof. John Ross of the University of Tennessee, convicted of export control violations and sentenced to 4 years in prison -- at the age of 72.
What few in the US recognize is that the rules are even more stringent than indicated by SourceForge. To be convicted of an export violation, one needs merely to discuss a controlled technology with a foreign national on one of the lists -- which means, in addition to many other individuals, entities, and countries, any citizen of China or Iran. Sending anything overseas is unnecessary to violate the law -- merely speaking to a group containing one such person in the audience (like at a private industry consortium meeting) is all that is needed. And the list of controlled technologies is incredibly long: See the Commerce Control List, especially Category 3 - Electronics, Category 4 - Computers, Category 5 (Part 1) - Telecommunications, Category 5 (Part 2) - Information Security, and Supplement No. 2 to Part 774 - General Technology and Software Notes.
If you are an open source coder (as I am), and you are involved with a project on sourceforge (as I was until a couple minutes ago), just ask the principal maintainer to move it to a different site. If they don't, stop contributing. Or, if you really don't care, then just go on with business as usual.
Did Anyone Look at the Exclusion Lists?
There's a veritable population of excluded 'entities' right here in town!
Many have odd looking names like MAJIDA, AL KAYALI, ABDULAH, FADWA, etc.
Then there's the innocuous MYNET.NET, SYNAPTIX.NET, ...
Good judgement comes from experience, and experience comes from bad judgement.
- W. Wriston, former Citibank CEO
Relocate to another country.
Knowledge is how to play a game, intelligence is how to win, wisdom is knowing what game to play.
12. No Surrender of Others' Freedom.
If conditions are imposed on you (whether by court order, agreement or otherwise) that contradict the conditions of this License, they do not excuse you from the conditions of this License. If you cannot convey a covered work so as to satisfy simultaneously your obligations under this License and any other pertinent obligations, then as a consequence you may not convey it at all. For example, if you agree to terms that obligate you to collect a royalty for further conveying from those to whom you convey the Program, the only way you could satisfy both those terms and this License would be to refrain entirely from conveying the Program.
the wise thing for sourceforge to do is simply agree to whatever the usa demands. and then its business as usual. which is: everything is available with no restrictions to anyone remotely familiar with a proxy server
enforcement is impossible, even for the usa within its own borders, so who fucking cares what the lawyers and bureaucrats and diplomats say? they've already been routed around
i'm not saying you shouldn't get upset at the arrogance and the audacity of the american demands, i'm saying a bully making demands without any actual ability to follow through on his threats is nothing you have to pay any respect to, and therefore nothing you should waste much effort or emotion on
you simply pay the asshole lip service, put a big smile on your face, say "yes" to whatever the asshole wants, and then its business as usual, which is: these laws mean nothing. all of the posturing and threats and demands mean nothing. there's NO ENFORCEMENT POSSIBLE
they can't enforce any of it. its the internet age. this is not about exporting video game machines, which can be intercepted, its about the internet, which routes around everything
people: stop getting upset at idiots trying to enforce legal understandings from a previous technological era and just ingore them and their petty demands without any muscle behind them. they can't stop technological change. they are defunct, they just don't know it
don't waste your time getting upset at a paper tiger
intellectual property law is philosophically incoherent. it is your moral duty to ignore it or sabotage it
This means users residing in countries on the United States Office of Foreign Assets Control (OFAC) sanction list, including Cuba, Iran, North Korea, Sudan, and Syria, may not post content to, or access content available through, SourceForge.net.
So basically -- help Iranian dissidents in their struggle against Islamofascist tyranny = get prosecuted by the Feds and go to prison as a possible traitor in your own country. Way to go, Congress. Way to go...
Anybody but me see a correlation here?
... beginning with tomorrow!
I don't see a single person who is complaining about this, offering to help fund moving SF.Net elsewhere.
Not so easy when you have to foot the bill, is it?
outlined the reasons behind the ban, now with 100% less obfuscation, link tracking, and annoying toolbar!
GLaDOS for President 2016! "Well here we are again. It's always such a pleasure." -- GLaDOS, 2011
The GPL doesn't force you to distribute the code, or prohibit you from selecting recipients according to any criterion you wish. It only prohibits you from placing restrictions on what the recipients can do with the code after they get it from you. In other words, the GPL doesn't require SF-hosted projects to directly distribute their code in Syria. It only prohibits the projects from forbidding downstream recipients from distributing to Syrians, or from forbidding Syrians to run the code.
Mod parent up, just because your assets are hosted in a neutral country, does not make you free from us law if you are a us company.
More over, suppose you move your servers and company somewhere else. Now, you are on the state department's hate list for doing business with US enemies, and have to deal with that. Worst case, your company could get blacklisted from the US and other western countries. Also, who is to say that wherever you go won't have similar restrictions? People don't like each other the world over.
Wouldn't the best plan be to host where you will reach the widest audience, and just be smug in knowing that the Internet has a tendency to rout around censorship? Let's be honest, just blocking a few IP ranges is just playing lip service to US law...
HA! I just wasted some of your bandwidth with a frivolous sig!
SF should lease some space in their datacenter for a server or two to be used as a proxy server to some other company. Make sure this proxy server is locked down to only offer SF - not the whole Internet. The additional bandwidth in doing so would be 0.
Keep the proxy anonymous and open. This way, you keep access to SF officially locked down, but the proxy server is still going to be accessible to the rest of the world.
I know it won't happen, but it would be nice to see SF take the stand based on its principles as an open source community member.
Why wouldn't this be considered a violation of the first amendment? (Not SF.net blocking, but the laws which that censorship is based).
There must be some legal way to bypass such laws. Perhaps having a foreign branch such that they can do what you can not do within the US would be sufficient. Freedom sometimes requires actions that people would not normally take.
The US export laws were created to hurt the countries that have horrible diplomatic relations with the US. If the US and its allies don't trade with those countries, those countries' economies will fall (in theory) and they will have to negotiate with us. However, these laws don't really transfer well to open source software. Yes, the people in those countries should be allowed to access sf software. But the law is the law and there isn't much that sf can do. It would also be very difficult to try to reform these laws to account for open source software, since there would be a ton of loopholes. Also, this is not a first ammendment violation or any kind of censorship. These laws block exports of products to those countries. There is no problem allowing them to view your website or see information. But giving them software to download violates the export laws. For example, Wikipedia has no problems with the export law. It is allowed to teach the countries on the export list. But that is because Wikipedia is only giving them information, not software.
To play Devil's advocate for a minute:
1. Why these laws? Because the export restrictions don't do a proper job of distinquishing between tangible property and software.
2. Why obey them? To avoid the government punishing you.
It may be difficult to draft a law against, say, industrial espionage to hostile nations (which also involves intagilbe property) without also including information that isn't confidential.
While the current law leads to the aforementioned silliness, real perpetrators of industrial espionage and/or the aiding of hostile nations are less likely to get off due to some subtle distinction regarding the type of intagible property they transferred. IANAL; it would be interesting to here from one regarding how the law might be re-written to avoid this silliness. We could expempt providers of softwares that are generally available... but then you get bogged down in legal definitions for "generally available"... see? It's easy to criticize from the armchair... but oh so fun, and I do it too.
For all intensive purposes, "whom" is no longer a word. That begs the question, "who cares"?
Github is where it's at.
What is software if not information? Binaries are just sequences of 1's and 0's and the source is obviously just text. Your distinction of what makes SF.net different from Wikipedia doesn't really hold water (even if the US govt think it does).
Vanuatu or some other place may be a good idea. Get everything out of the US and Europe.
"If the King's English was good enough for Jesus, it's good enough for me!" -- "Ma" Ferguson, Governor of Texas (circa
It's quite ridiculous in the first place that the US gov't would attempt to selectively block access to information available on the WORLD WIDE WEB. It might be an annoyance, but it's not like it's really going to keep anybody from getting it, if they really want it.
They should stand up for their ideals the same way the video game industry does: a checkbox. Use the "click here if you're under 18" method.
"[x] I am a resident of Syria, Iran, North Korea..."
"We're sorry, SourceForge is not available to you persuant US code bla bla bla"
A slashdotter who didn't build his own computer is like a Jedi who didn't build his own lightsaber.
Can you remind me when was the last time the US was attacked by a Syrian terrorist? How come Syria sponsors terrorism but Saudi Arabia does not?
Here are some interesting numbers your government doesn't want you to know
US censorship is yet another reason to use distributed version control systems! If the US or your own country blocks access, just push your changes some place else.
I think it may be good that SF.net abides the law. There are too many people who think that "open source" is all about breaking the law. That is, people crack copy protections, passwords etc. and some thing the whole community is about that, 'coz that's what they hear.
Now they see that the community is not about breaking the law, it's about making software.
Also, I think this may give to some a reason to perhaps rethink certain laws that restrict commerce and free exchange of ideas.
Every problem has a solution that is simple, easy and wrong. Selling our Liberty for a little Security is a much too de
It rubs pretty much everyone at Slashdot the wrong way so why don't we all chip in to create a mirror site or something based outside the US?
How to you propose to do this without exposing every contributor to prosecution for violation of US export controls?
These sure look like seas to me...
I always wondered, what would happen if someone refused to obey these stupid US laws about Iran and Cuba . Would he be arrested as a 'traitor' or even as a 'terrorist'? What if he wasn't a US citizen? How can a country, valuing freedom of speech and democracy so much, place such restrictions on its citizens? Why information censoring in China is considered 'bad' and in US - 'good'?
http://sourceforge.net/blog/clarifying-sourceforgenets-denial-of-site-access-for-certain-persons-in-accordance-with-us-law/
Because they are blocking "the enemy" outside the borders of US. US law only works in the US... politicians do however forget this detail and try to expand US laws to other countries.
IMO, this is a simplistic view. "Extraterritorial" laws only work with the cooperation of other nations. As long as a good bilateral relationship with the US is considered important enough to acquiesce to US policies, then a US law can have effective reach. If not, then not.
Luke, help me take this mask off
... also block all the people on the list?
now we need to go OSS in diesel cars
Well I wonder what on sourceforge is worth blocking? And why apply the blocking to just a few countries?
The answer is, almost nothing on slashdot is worth blocking and the countries matter very little.
Look at this event in the context of the "Google considering leaving China" blog entry earlier this week.
The US government has very few tools for dealing with the alleged organized, systematic and large scale theft of data and email that was mentioned in the Google blog entry.
That same blog entry contained a link to a US Government position paper. That US position paper alleges the Chinese have a philosophy of Internet warfare.
Other articles describe the observed practice, they use teams, they systematically penetrate individual user's systems, they have download lists, they construct staging areas, they build CD size archive files. With this kind of stuff going on, no wonder Google didn't want to hang around and get hacked more.
Blocking sourceforge to the existing list of international bad player countries is a trial or demonstration. Several governments around the world are watching this American trial maneuver.
Right now I am reading: The unconquerable world : power, nonviolence, and the will of the people by Jonathan Schell and I simply wish I could understand the forces driving these conflicts on and over and about the Internet.
With these militaristic morons prowling the Internet, I think a prudent personal need is to have a really well hardened home gateway and at least one really hard to hack home system.
In my journal I discuss a comparison of three open source distributions as a base for setting up a relatively secure home desktop. Conclusion: use the Linux or FreeBSD you know best. Unresolved: how to secure the browser.
True story:
I work on a sourceforge hosted Linux HA project. Some guy in Cuba wanted to use it, but because of these restrictions he gave up and is now using FreeBSD.
Is that really what we want?
Watch this Heartland Institute video
I am really upset with that and seriously consider moving my projects from SF to another service hosted in a free country. My first reaction was "no problem, anyone know how to use a proxy" but this is more than that! They try to impose me who can get and use my own software I choice to released with a GPL license. This is clearly a GPL violation we cannot accept. If we are not living in the US the simplest solution is to go elsewhere and pray for the poor US developer who can no longer use the GPL license.
you dislike the american censorial attitude towards cuba, but you lend no criticism to the cuban censorial attitude towards their own people
i can't take someone seriously who is so angry at american crimes in this world, but doesn't have anything to say about the much more horrid crimes of autocratic regimes against their own people
the american policy towards cuba does not hurt cuba. the cuban regime's policy towards cubans hurts cuba. you do understand and agree with that, right?
therefore, america has every right to want to have nothing to do with cuba as long as its regime is so vile. europe has chosen to still deal with cuba. ok, that's your choice. i would say that the european choice is the wrong one, simply because you are lending support to a regime which gives its own people no rights
you are familiar with the crimes of china against its people, you are familiar with the crimes of iran against its people. and you understand why europe modifies its relationships towards these countries due to these violations. then why don't you see that cuba is the same type of vile autocratic regime that affords its own citizens no rights? and furthermore, why do you believe the lie that it is the usa hurting the cubans, rather than seeing, as with the iranian regime or the chinese regime, that its actually the cuban regime that is at fault here?
and if you see that, you'd stand against the vile cuban regime, and support the notion that europe should not deal with an illegitimate government that abuses its own people
intellectual property law is philosophically incoherent. it is your moral duty to ignore it or sabotage it
A country that can build weapons and assault vehicles on par with ours has the engineering talent to write its own software that can complement those systems. To a large extent, the real problem is not the threat of them learning how to make their own real-time OS or modify Linux to (probably badly) guide a cruise missile or ICBM, but them learning the proprietary secrets that lead to the manufacturing knowledge of building the actual hardware (which is where the real threat exists).
Chinese censorship bad, US censorship good (or at least acceptable). All animals are equal, but some are more equal than others.... Henri
Isn't it time we started using hosting services located outside the USA? This is not the only restriction that the US impose. I would imagine a hosting service could serve its community better if it were based in a less restrictive jurisdiction. What jurisdictions are good for hosting software and information, and what hosting services operate out of such jurisdictions?
Please correct me if I got my facts wrong.
But then again it's easier to censor then challenge your ideas.
Calling someone a "hater" only means you can not rationally rebut their argument.
During Iran June elections unrest, Youtube, and Twitter were integral part of the democratic movement in Iran. By disseminating the info and relying the opposition they helped fight Iranian totalitarian regime, and the repeated efforts of Iranian government to cut even the Internet and censor the access to the Internet says much about how afraid they are from the free Internet. Denying people in these countries access to the open software they can use to spread the Internet and related technology, therefore indirectly spreading democracy in their countries, and fight against their totalitarian regimes seems to be completely counter productive? I wonder how this could help anybody? How this can specially help freedom in the world? Specially, that the governments in these countries controling the Internet access can work around this control spending a couple of hundreds of dollars buying access in any place else in the world, be it China or elsewhere in the middle east! For Twitter, US administration even asked Twitter to help, can anybody in US administration understands the issue and make some amendments?