Slashdot Mirror

← Back to Stories (view on slashdot.org)

Canonical Sues Cloud Provider Over 'Unofficial' Ubuntu Images (ostatic.com)

Posted by EditorDavid on from the lawyers-for-Linux dept.

An anonymous reader quotes OStatic's update on Canonical's lawsuit against a cloud provider: Canonical posted Thursday that they've been in a dispute with "a European cloud provider" over the use of their own homespun version of Ubuntu on their cloud servers. Their implementation disables even the most basic of security features and Canonical is worried something bad could happen and it'd reflect badly back on them... They said they've spent months trying to get the unnamed provider to use the standard Ubuntu as delivered to other commercial operations to no avail. Canonical feels they have no choice but to "take legal steps to remove these images." They're sure Red Hat and Microsoft wouldn't be treated like this.
Mark Shuttleworth, the founder of Ubuntu, wrote in his blog post that Ubuntu is "the leading cloud OS, running most workloads in public clouds today," whereas these homegrown images "are likely to behave unpredictably on update in weirdly creative and mysterious ways... We hear about these issues all the time, because users assume there is a problem with Ubuntu on that cloud; users expect that 'all things that claim to be Ubuntu are genuine', and they have a right to expect that...

"To count some of the ways we have seen home-grown images create operational and security nightmares for users: clouds have baked private keys into their public images, so that any user could SSH into any machine; clouds have made changes that then blocked security updates for over a week... When things like this happen, users are left feeling let down. As the company behind Ubuntu, it falls to Canonical to take action."

47 comments

  1. Dupe by buchner.johannes · · Score: 3, Informative

    https://tech.slashdot.org/stor...

    --
    NB: The message above might reflect my opinion right now, but not necessarily tomorrow or next year.
    1. Re:Dupe by Anonymous Coward · · Score: 0

      False. Read the summary again.

  2. Name by Anonymous Coward · · Score: 1

    Can we finally have the name of this "European cloud provider"?

    1. Re:Name by Anonymous Coward · · Score: 0

      Maybe the name is literally "a European cloud provider" to mess with your head, like "Another Company" and such.

    2. Re:Name by grub · · Score: 2


      Can we finally have the name of this "European cloud provider"?

      We'll get the name on the next dupe of the story. Check back Tuesday.

      --
      Trolling is a art,
    3. Re:Name by Anonymous Coward · · Score: 0

      Pretty sure it's OVH. Considering the amount of abuse coming out of there, I wouldn't mind if a judge ordered them to terminate all of their Ubuntu VPS's.

    4. Re: Name by Anonymous Coward · · Score: 0

      A few years back I tried their Ubuntu images and they were a bunch of customized garbage. That being said, I wouldn't be surprised if it really was OVH.

    5. Re: Name by Anonymous Coward · · Score: 0

      OVH... yep my guess as well...
      From what i recall it's mostly the kernels which are pretty fucked up..

  3. GPL? by Anonymous Coward · · Score: 0

    isn't it covered by the GPL?

    or is this about removing the amazon spyware?

    1. Re:GPL? by ChoGGi · · Score: 1

      Trademark not copyright

    2. Re: GPL? by slazzy · · Score: 4, Insightful

      They can do whatever they want, but it's no longer "Ubuntu"

      --
      Website Just Down For Me? Find out
    3. Re:GPL? by Anonymous Coward · · Score: 0

      It could also fall under counterfeit goods (passing off something that it isn't, which is related to trademark).

    4. Re: GPL? by Anonymous Coward · · Score: 0

      this is probably going to be a naming issue so it wont reflect on ubuntu if they dont change.

      there are several distro that make pretty masive changes that have there own name but are based on other distros that its a cloud solution makes no difference with this.

    5. Re: GPL? by Anonymous Coward · · Score: 0

      It never was "Ubuntu", considering this is about paying off Canonical to be a "certified public cloud". Shuttleworth is just pissed off that someone is doing just fine without paying them off.

      Besides, if you cannot edit your repolist and update the kernel from sources of your own choosing and setting SSH keys yourself, then you have no place running a VPS.

      This is spin. Pure spin to bully providers to pay off Canonical. I am glad that OVH is standing up to this abuse. I hope it goes to court and OVH makes an example of them.

       

    6. Re: GPL? by Anonymous Coward · · Score: 1

      The fact remains that upon automatic installation of "Ubuntu" on OVH dedicated servers, by choosing it from the OS selection, so it's a pre-installed image, the resulting "Ubuntu" has a custom, grsec-patched kernel. I don't know how well grsec is implemented, but if it IS implemented well, then the kernel is much more secure than the default Ubuntu's. I don't know if there are any other changes, I haven't seen any, esp. not blocked updates.

      So it IS pretty much about using the "Ubuntu" trademark while installing something that is not really Ubuntu Linux, but Modified Ubuntu Linux which is not advertised anywhere in advance.

  4. Good for them by Anonymous Coward · · Score: 0

    As a member of an open source project that doesn't defend itself, I know it sucks when forkers (who never point the finger at themselves) give you a bad name.

  5. But they followed naming standards! by Provocateur · · Score: 4, Funny

    Vivid Vervet
    Wily Werewolf
    Xenial Xerus
    Yakkety Yak
    Zesty Zapus

    And from the summary, "Unofficial Ubuntu"

    --
    WARNING: Smartphones have side effects--most of them undocumented.
    1. Re: But they followed naming standards! by Anonymous Coward · · Score: 0

      +1 winning

  6. Dear David by frovingslosh · · Score: 0, Flamebait

    Dear David,

    I have an amazing trick to share with you. Each time that I check into Slashdot I scan the headlines of the current stories, back to a story that I saw last time that I was on the site. It isn't hard, I usually don't even have to use the "Older" link at the bottom of the page; Slashdot just doesn't post that much. And I don't have to even read the articles, let alone do any RTFA. If I get to the bottom of the page then "Older" will give me an older set of stories and then I'm caught up.

    I can do this in just a few minutes, and I'm not even getting paid to do it. Perhaps you could do this too.

    Of course, I realize that it would be a LOT more work than you put into your job now, and obviously your superiors don't give a damn about how well you actually do your job. It was just a suggestion and I'm pretty sure that you'll ignore it.

    --
    I'm an American. I love this country and the freedoms that we used to have.
    1. Re:Dear David by lxs · · Score: 1

      ..and then of course you've got this terrible pain in all the diodes down your left hand side..

    2. Re:Dear David by drinkypoo · · Score: 1

      Of course, I realize that it would be a LOT more work than you put into your job now, and obviously your superiors don't give a damn about how well you actually do your job.

      Welcome to Slashdot, I see you are not new here.

      New boss, same as the old boss

      --
      "You're right," Fisheye says. "I should have set it on 'whip' or 'chop.'"
    3. Re: Dear David by Anonymous Coward · · Score: 0

      Rough boys
      come over here
      I wanna bite and kiss you.

      Rough boys
      Don't walk away
      I wanna buy your leather.

  7. name 'em by Anonymous Coward · · Score: 0

    "We are now ready to take legal steps to remove these images. We will seek to avoid affecting existing running users, but we must act to prevent future users from being misled."

    Why would Canonical want to avoid affecting currently running users? It seems to me that existing users of this offending cloud service would want to use "genuine" Ubuntu images, and they've obviously been misled (according to Canonical) by the cloud service that's what they're using right now. Shuttleworth shouldn't have blogged about this until Canonical had already filed its lawsuit. That's the time to name and shame.

  8. Not REALLY a dupe... by WoodstockJeff · · Score: 1

    The original story was about a "hard stand"... This is about suing them. Totally different thing...

    When you take a "hard stand", you wear the condom yourself - suing involves hiring others to wear the condoms.

    1. Re:Not REALLY a dupe... by Anonymous Coward · · Score: 0

      Aside from the word "Sues" in the headline, I don't see any indication that Canonical has actually filed a lawsuit against OVH (or anyone else).

  9. This is not about integrity by Anonymous Coward · · Score: 0

    It is about money.

    From Mark Shuttleworth's Dec 1st post (Mark Shuttleworth is the founder of Ubuntu. He’s also the Executive Chairman and VP, Product Strategy at Canonical)

    More importantly, as users, you can vote with your feet to any significant cloud and have confidence that what you are using won’t bite you hard in the weekend.

    Someone did not pay to be on that list, and they are not happy about their success. Ubuntu could not have a less accurate name.

    Let's see, does Slackware or FreeBSD have similarly titled self-important twats at the helm?

    Nope... Slackware has a "Founder and Project Coordinator": http://www.slackware.com/about/
    FreeBSD has "Executive" and "Marketing" directors: https://www.freebsdfoundation.org/about/staff/ (not so good, bit like Ubuntu there)

    I think Shuttleworth needs a major dose of "don't be a greedy dick" medicine.

    1. Re:This is not about integrity by wolrahnaes · · Score: 2

      Notice how he uses the words "breach of contract" in the post. You can't have a breach if there was no contract.

      Either Shuttlesworth is being VERY loose with legal terminology, which would generally be a bad idea for public statements from a former CEO and still public face of the company, or there was some agreement in place.

      --
      I used to get high on life, but I developed a tolerance. Now I need something stronger.
  10. hashtag trademarks matter by Anonymous Coward · · Score: 0

    They can do whatever they want, but it's no longer "Ubuntu"

  11. They do have a point by r1348 · · Score: 2

    I've been very critical of Canonical in the recent years (the whole Unity+Mir fiasco) but this time I think they're right. You cannot fundamentally modify their product and still call it Ubuntu. If they took Ubuntu, disabled AppArmor, removed all the trademarks and marketed it as TotallyUnsafe linux whatever, that would have been acceptable, but I can see why Ubuntu feels damaged by this "European cloud provider" behavior.

    1. Re:They do have a point by luther349 · · Score: 1

      yep you can change it however you like but when it comes to there trademarks they can say you cant use them due to your mods. heck nearly everyone who does Ubuntu remixes knows this and removes the trademarks.

    2. Re:They do have a point by sjames · · Score: 1

      They absolutely do have a point. The provider is passing off their hacked up linux distro as Ubuntu, playing off of the brand. That's exactly what trademark law is intended to prevent.

  12. Secret justice? by manu0601 · · Score: 1

    The informations are scarce: Cnnonical sues who, in what court of what country?

  13. Canonical Certified Cloud Suppliers? by slincolne · · Score: 1
    Is the next step the certification of cloud providers by Canonical?

    They may be somewhat shy of naming vendors who are bastardising their product and compromising the security, updatability and maintainability of their pre-packaged images, but maybe another approach is for Canonical (and other Linux vendors) to come up with a certification model? That way if you play nice you get to use the logo, and if you lie you can be sued.

    That way customers can quickly tell which vendors are more reputable than others.

    The business model has been around for years and would help sort out the better vendors from the worse.

    1. Re:Canonical Certified Cloud Suppliers? by La+Gris · · Score: 1

      Or because Cannonical need a wider market for their own cloud products https://www.ubuntu.com/cloud/p...
      Defeating competitors may be their real ultimate goal.

      --
      Léa Gris
    2. Re:Canonical Certified Cloud Suppliers? by i.kazmi · · Score: 1

      Uhuh...if they're modifying Ubuntu, they can't call it Ubuntu. They can call it OurSuperCoolLinuxDistro (based on Ubuntu Linux) but they can't call it Ubuntu Linux. If Canonical doesn't defend their trademark in this particular instance, the trademark will get diluted. Why's that so hard to understand?

    3. Re:Canonical Certified Cloud Suppliers? by stub667 · · Score: 1

      Next step? There are already Ubuntu Certified Public Clouds:

      http://partners.ubuntu.com/pro... (marketing)
      http://partners.ubuntu.com/fin... (full list)

      tldr; pretty much every public cloud, and all the major ones.

  14. Windows OEM version? by Anonymous Coward · · Score: 0

    Where is this different from a windows OEM version, where the OEM adds insecure stuff nobody really wants?

    1. Re:Windows OEM version? by stooo · · Score: 1

      Very different.
      With Ubuntu, you are allowed to modify ubuntu.
      You only have to distribute it under a different name, which OVH did not do.

      --
      aaaaaaa
    2. Re:Windows OEM version? by Anonymous Coward · · Score: 0

      I would guess the difference is that the OEMs sought and received permission from Microsoft to do this. Heck Microsoft probably even provides technical assistance to make it easier.

  15. OVH? by pmontra · · Score: 1

    OVH founder on June 19 2016 "@ubuntu asks us to bill you 1e-2e per month for each VPS/PCI/PCC/SD. If not, prohibition to use the mark "Ubuntu" on our website."

    https://www.reddit.com/r/linux...

    1. Re:OVH? by Anonymous Coward · · Score: 0

      bill you 1e-2e per month

      Is that scientific notation? Why don't they just say 0,01 euro a month?

  16. OVH by multia · · Score: 1

    unnamed provider... We all know who it is https://twitter.com/olesovhcom...

  17. There is an option at OVH by future+assassin · · Score: 1

    You can select their modified Ubuntu distro or the standard Ubuntu one when selecting the OS at install.

    --
    by TheSpoom (715771) Uncaring Linux user here. I have nothing to add to this but please continue. *munches popcorn*
    1. Re:There is an option at OVH by Freedom+Bug · · Score: 2

      You can choose the OVH or distribution *kernel* when installing, but the OS itself will have been modified, regardless. And that's only for some machines, their Xeon D machines have the distribution kernel option disabled, for example.

  18. I'm starting a company named... by Anonymous Coward · · Score: 0

    ...People Familar With The Matter

  19. OVH? by Anonymous Coward · · Score: 0

    Oswald Van Halen?

  20. Google Latitude? by SumDog · · Score: 1

    Wait ... so they're just starting up Google Latitude again and giving it a new name?