Microsoft Joins Group Working To 'Cure' Open-Source Licensing Issues

Microsoft is joining Red Hat, Facebook, Google and IBM in committing to extending right to "cure" open source licensing noncompliance before taking legal measures. From a report: On March 19, officials from Microsoft -- along with CA Technologies, Cisco, HPE, SAP and SUSE -- said they'd work with open together with the already-committed vendors to provide more "predictability" for users of open source software. "The large ecosystems of projects using the GPLv2 and LGPLv2.x licenses will benefit from adoption of this more balanced approach to termination derived from GPLv3," explained Red Hat in a press release announcing the new license-compliance partners. The companies which have agreed to adopt the "Common Cure Rights Commitment" said before they file or continue to prosecute those accused of violating covered licenses, they will allow for users to cure and reinstate their licenses.

BSD is the cure

just use that license, np

Re: BSD is the cure

[orlanz]

The GPL and LGPL aren't exactly hard to understand. I think the issue in most cases is that people don't read the license that allows them to use the software they use. In which case they just make random assumptions and move on.

Such irresponsibility would lead to BSD violations too.

Re:BSD is the cure

Agreed. I was once an open source nut during my college years, but attempting to coerce someone to give away the changes they make to an openly available source code base is nuts.

Re: BSD is the cure

[ShanghaiBill]

they just make random assumptions and move on.

People do this with proprietary software as well. They don't read the EULA and they copy from friends. Why should they only get impunity for copyright violations of the GPL? Why doesn't Microsoft support a "first time free" policy for their own software?

Re:BSD is the cure

Came in here to say just that. Copyfree licenses, such as BSD, are what you should use if you want your code to be free and used for any purpose. GPL is what you want to use if you want to prevent commercial use of your code inside of another program. Or if you want to be an ass and make other copyfree things GPL/non commercial. It's the libertarianism vs communism of licensing.

(Yes, you can throw the argument of commercial GPL software out there. It exists, I know. And now you have cloud services as a result. Software as an internet service... thanks GNU!)

Re: BSD is the cure

[jellomizer]

It is if you are trying push it to its limits, trying to mix non-GPL with GPL technologies. Using GPL technology as part of a larger service... Real life stuff, where it isn't as black and white as RMS sees it. And the GPL while may be written clearly, does have interesting loopholes. Such as the Anti-Tivoization rule, that makes the exception for IBM to do it on their mainframes. Cloud and SaaS usages havn't been completely defined.

Re:BSD is the cure

[jellomizer]

I too was an Open Source nut in college. However giving away changes to a an Open Source Application isn't nuts, it is probably the responsible thing to do. However if your changes do something significant to change the application, the GPL is a ball and chain.

Re: BSD is the cure

[stooo]

>> It is if you are trying push it to its limits, trying to mix non-GPL with GPL technologies
No problem here.
You can do pretty much everything with a GPL program, except statically link or mix in code with a non GPL compatible licence.
BSD is GPL compatible.
No problem here.

Re: BSD is the cure

They don't want to support it. They feel like they have to. They make a lot of money from fees due to proprietary license violations. They would not give that up. They cannot make money from fees from GPL violations, so they might as well support what everyone else is doing to look good.

Re:BSD is the cure

[drinkypoo]

I was once an open source nut during my college years, but attempting to coerce someone to give away the changes they make to an openly available source code base is nuts.

That's Free Software, not Open Source. Open Source only means that you can get the source code, it means nothing whatsoever about distribution rights. The OSI likes to claim that they invented the term in 1998, but I have diehard proof that the phrase was already in use in the sense in which I have described by 1995. I knew this of course, because I was one of the persons so using it, but the leading lights of the OSI would like us to believe differently because the lie makes them more influential.

Re:BSD is the cure

You don't necessarily have to give away the changes either.

Two options:

You distribute a modified binary and a matching modified source code.

You don't distribute either. --- this is perfectly acceptable (!).

Re:BSD is the cure

[K.+S.+Kyosuke]

but attempting to coerce someone to give away the changes they make to an openly available source code base is nuts.

Why? Maybe GPL in particular is not all that useful for some applications, but, e.g., in case of LGPL, the idea that if you manage to improve a component not related to the core of your product, you can pay for it by sharing these non-core-related features to be useful to others seems pretty neat. After all, you *did* use someone else's work to lessen your workload in that particular non-core area by using said component in the first place.

Re:BSD is the cure

I'm a libertarian and I will support copy"left" until copy"right" is done away with. Copy"right" conflicts with libertarian philosophy of not utilizing violence, theft, or coercion to achieve social or political objectives which is exactly what copy"right" is all about in practice.

In spite of the excuse for copy"right" being a LIMITED monopoly (government granted monopolies contradict the free market too) to promote the arts and sciences for the benefit of the people it is not that in practice. Which is why we have copy"left".

Copy"left" is itself a hack on copy"right" that fights genuine dangers to our freedom. It would exist with or without copy"right" philosophically. You can support copy"left" without supporting copy"right" as I do.

Unlike normal copy"right" there is in practice little to no enforcement of copy"left" by anybody. I should know as I interact regularly with the *ONE* organization in the world conducting enforcement (it consists of like 3 people, only one being a lawyer) and the other which is conducting enforcement on only its own copy"lefts" (consisting of no more than a dozen and of those none are lawyers, but they do have lawyers, just not in-house).

I philosophically support copy"left", but do not support the enforceability of copy"right". Ending copy"right" would have near zero negative impact on copy"left" and the leading enforcer in the world agrees.

I believe a user of my software has every right to utilize it however they wish, but at the same time ought to release any changes they make morally speaking. I don't believe government should enforce morals though nor do you have any right to do so either. Nobody has a right to thrust onto me anything.

BSD style licensing encourages abuse of the users (that is it encourages commercial developers to not release code and so I'm not as much of a fan of it). When a copy of something is made there is no loss to the creator or to the person you have copied from and thus it is NOT THEFT.

I have had and do have multiple entertainment businesses and have never enforced copyright on anyone (I license everything under creative commons licenses). My software development business is founded and dependent on free software. Chances are you have done business with my company if you utilize GNU/Linux. We have never enforced copy"left" on anyone and heavily contribute to the further development of a lot of different programs.

Re: BSD is the cure

[exomondo]

Why should they only get impunity for copyright violations of the GPL? Why doesn't Microsoft support a "first time free" policy for their own software?

This isn't "first time free", it's that you get impunity if you come into compliance.

Re: BSD is the cure

You think cloud services exist solely to avoid GPL compliance? Boy the BSD trolls are getting more stupid by the minute.

Re:BSD is the cure

And that's you're right to support copyleft. However if I release FOSS software, I don't give two shits what someone does with it as long as it doesn't violate my life, liberty, or property. And guess what? As long as my code is copyfree it won't. If someone takes my work and turns it into copyrighted work. I don't care if they "abuse" their users. Because their users CHOOSE to be their users.

Your idealism makes you sound more like a Faux Libertarian, if you are even one.

That being said, I believe GPL and copyleft has a place. It is to prevent closed commercial products. No more, no less. Say I make a copyrighted video game. And I want people to mod the code. This is where GPL is great. Release the code as GPL, keep the artwork as copyrighted. Profit! This is a good use for copyleft. Any other arguments against copyfree is kumbaya stupidity and social engineering.

 

Re: BSD is the cure

He didn't say it was the sole reason. Reading comprehension 101. I personally believe that cloud services can be a way to bypass GPL. Nothing in the GPL prevents you from selling a closed service that uses modified GPL code that others/users do not have access to. GPL only matters if they distribute a binary.

Re:BSD is the cure

[Aighearach]

Nope, you still have the exact same problem because BSD has very strict compliance requirements that not everybody is even willing to engage in.

The weird part is that you seem to be claiming to have knowledge about different licenses, and yet even though you've been corrected about this point on this very website repeatedly, you still make the same idiotic claim about the BSD license. You spam the same words every time it comes up.

So look, No. The only license that lets users stop caring about it is the Apache 2 license. It is the only one that everybody, GPL, BSD/MIT, proprietary, they can all just use it and not worry.

Re:BSD is the cure

[Aighearach]

Bullshit, BSD has restrictions that don't work for everybody, it is just a lie to represent it the way you do. It is your favorite, that's great. But it doesn't have the least restrictions, and it isn't for any purpose.

There are more than 2 licenses in use, BTW. Look it up if you don't believe.

Re:BSD is the cure

[Trogre]

I gather you've never heard of the Affero GPL.

Re:BSD is the cure

Its a nice simplistic answer by someone who has never had to deal with trying to release a complex product built on open source components.

I won't go into details in case there are licensing trolls reading (in some jurisdictions you don't even have to be the owner to claim copyright violation), but there is a popular Linux distribution for embedded products which in its default configuration has GPL licensed libraries as dependencies of dependencies of popular Apache licensed libraries which the application developer might be misled to believe are perfectly safe to use with their proprietary application. The embedded distro takes care of compiling all the dependencies and even has some basic license violation warnings built in, but the depth of the scan is not enough to warn you if you indirectly link proprietary to GPL code in this case.

Re:BSD is the cure

[david_thornley]

Nobody's asking people to do that. Copyleft licenses say that, if you publish, you need to share your changes. You can't just release the binaries.

Yes, that sound you heard

That sound you heard was that of several thousand lawyers sighing at what could have been billions in lost revenue

Re:Yes, that sound you heard

[Aighearach]

Nope, that was just a giant wooshing sound, not a flushing sound.

These particular types of copyright violations don't result in cash payments, they result in the withdrawal of a free license. It doesn't result in billions of dollars in lost legal fees, because the non-monetary nature of the case substantially limits the legal work involved.

Also, there is nothing to fight when you're out of compliance; you can't use tactics like attacking the contract, because you'd only lose your license that way too. So if you're really in violation, that is a very very small amount of legal work for your lawyers; mostly just them explaining to you that you have have to either give away the source, or risk an injunction that halts distribution of your product. If you really used the code, and you can't write new code fast enough to prevent an injunction, there isn't much you can do to fight.

In the end under this system there will be about the same amount of work for the lawyers, as they still are in the loop managing the "cure." It could even end up being more work for them!

Ah, so....

So, the GPL isn't as cut a dried and obvious as Slashdotters insist it is.

And the issues regarding the license wasn't FUD after all.

Color me surprised! I thought all Slashdotters were legal experts.

Re:Ah, so....

[jordanjay29]

Only Anonymous Cowards.

Re:Ah, so....

What? It's M$ and therefore bad!!11

Re:Ah, so....

And the issues regarding the license wasn't FUD after all.

Funny, I see any article with M$ offering to help "cure" licensing issues as both bullshit, and they're looking for some way to game the system for their own uses.

You know, "oh, this license doesn't work for us, but if we decree it's covered under a more favourable license it will be".

Sorry, but the only people who see issues with open sourced licenses are people who make closed source software.

Re:Ah, so....

[Insanity+Defense]

So, the GPL isn't as cut a dried and obvious as Slashdotters insist it is.

And the issues regarding the license wasn't FUD after all.

Color me surprised! I thought all Slashdotters were legal experts.

The license is clear on what you are allowed to do (which is more than copyright law requires them to do) with the copyrighted material. These companies want to restrict copyright holders who use the GPL from using the legally allowed means of ENFORCING that copyright once it has been violated. Where do these companies get the right to dictate to the copyright holders how they will enforce it?

I'll take these guys seriously once they make a legally binding commitment to handle violations of THEIR copyrights by the same rules that they want to impose on people using the GPL.

Re:Ah, so....

So, the GPL isn't as cut a dried and obvious as Slashdotters insist it is.

For me it is very cut and dried. I do nothing but post on Slashdot and write evil closed commercial software for an evil ISV all day.

GPL is dead to me. Anything with a GPL only license might as well not exist.

LGPL I am very thankful for and quite happy to live up to my obligations to contribute back.

Re:Ah, so....

[DRJlaw]

I'll take these guys seriously once they make a legally binding commitment to handle violations of THEIR copyrights by the same rules that they want to impose on people using the GPL.

Reading comprehension fail. From TFS: "The companies which have agreed to adopt the 'Common Cure Rights Commitment' said before they file or continue to prosecute those accused of violating covered licenses, they will allow for users to cure and reinstate their licenses."

They use the GPL. They are pledging to to this with their copyrighted material licensed under the GPL.

Geesh...

Re:Ah, so....

He means the copyrights that these companies don't license as freely as they (have to) do with the GPL licensed software they modify and distribute. Don't be obtuse. Imagine getting caught distributing unlicensed copies of Microsoft Office and the worst that could happen to you is that you must start paying the regular price for those. Nah, not going to happen.

Re: Ah, so....

[Bruce+Perens]

The companies which have just promised to give people time before they sue are not known for ever having sued regarding a GPL license. Thus, this is posturing.

Re: Ah, so....

[Bruce+Perens]

Of course to us it's as if you don't exist as well.

Re: Ah, so....

[DRJlaw]

The companies which have just promised to give people time before they sue are not known for ever having sued regarding a GPL license. Thus, this is posturing.

Or they have been practicing what they preach, and are now putting a public face on the policy in order to pressure others to do the same. Just because the FSF/SFLC works with those in breach to resolve the problem without litigation does not mean that there are not bad actors as well.

Re: Ah, so....

[orlanz]

I think the GP is referring to the MS & IBM membership in the BSA. Which they still are. The BSA, where you are guilty until you expend the resources to prove without a doubt, your innocence. Kind of the opposite of this where someone already finds you guilty and now you want to negotiate how to come into compliance and waive the punishment.

Re: Ah, so....

[drinkypoo]

Of course to us it's as if you don't exist as well.

"Us"? Since when do you get to speak for Free Software, when the Open Source Initiative which you champion is diluting its message with your talk of what supposedly is and is not Open Source?

Re: Ah, so....

[Bruce+Perens]

"Us"? Since when do you get to speak for Free Software, when the Open Source Initiative which you champion is diluting its message with your talk of what supposedly is and is not Open Source?

This is new. I've not seen you actually attempt to champion Free Software.

Well, I'm a Free Software author, and in general apply FSF licenses like the GPL to my work. Thus, I apply words like we and us to myself and other people like me.

Also, as is widely published and I'd hope you would have read it by now, my founding of the Open Source initiative was done to help to attract people to the concept of Free Software, and specifically FSF and Richard's philosophy, by introducing it to them in terms they would more readily understand and sympathize with. And as far as I am aware, this has been effective.

Re: Ah, so....

Presumption of innocence is only present in criminal law, not in civil law, so it's not a particular failure of the BSA only, it's a failure of the entire civil law system. At least bark at the right tree, you'll be more effective.

Re: Ah, so....

So, only litigious bastards are allowed to promise they will not be litigious bastards anymore, everyone else promising they won't start to be one is invalid?

Re: Ah, so....

[Bruce+Perens]

There seems to be one "bad actor". Just one. But he's only a bad actor in terms of a completely voluntary community norm which nobody is compelled to follow, rather than the law.

Also, these companies would be practicing what they preach if they extended cure periods to their proprietary licenses. Which I doubt they do. They are still BSA members, and BSA has been a model for copyright trolling which the bad actor in this case might have been inspired by.

Re: Ah, so....

Well, I'm a Free Software author, and in general apply FSF licenses like the GPL to my work. Thus, I apply words like we and us to myself and other people like me.

I'd like to know what makes you think that FSF has some special right to redefine commonly used words like "free". Because for most normal people (that is, those who don't drink the FSF koolaid) "free" means "here it is, do whatever you like with it". And very much opposite of the GPL's "you're either with us or you're against us" mindset.

Re: Ah, so....

Well, I'm a Free Software author,

You're a Free Software author, I'm a Free Software author, every idiot who starts a GitHub project is a Free Software author. Free Software authorship has an unremarkably low barrier to entry.

Free Software doesn't make you special, Bruce. Tell us about the exceptional size of your penis.

Re: Ah, so....

Richard Stallman is an idiot. He should have called FSF the Foundation For Software Freedom and GPL software should be called Freedom Software.

Debian got it right with Software In The Public Interest.

Re:Ah, so....

[walterbyrd]

Image people jumping to that conclusion just because of three decades of bad behaviour.

Re: Ah, so....

[DRJlaw]

There seems to be one "bad actor". Just one. But he's only a bad actor in terms of a completely voluntary community norm which nobody is compelled to follow, rather than the law.

Minimize and excuse while attacking the "posturing" companies for following the community norm? Surely you're better than that, Bruce.

Also, these companies would be practicing what they preach if they extended cure periods to their proprietary licenses. Which I doubt they do.

Apple and oranges, Bruce. Their proprietary licenses do not "terminate" so that it becomes impossible to become licensed by purchasing the commercial product. The GPLv2 purports to do so. Having represented clients in BSA audits, I have firsthand knowledge that their "trolling" consists of demanding a small multiple of the retail price of the missing licenses. That is a far cry from McHardy's shenanigans

Unless you can identify specific and deleterious differences between the RedHat approach and the Community Enforcement Statement, this is merely a cheap shot against corporate contributors to GPLed projects. 99% of individual contributors to projects never assert their copyright either. Am I to assume that you'll attack those that sign on to the Community Enforcement Statement for "posturing" as well?

Re: Ah, so....

[Aighearach]

For values of "bad" that equal, "takes a position contrary to mine," sure.

But that isn't what "bad actor" actually means in English. He's acting in exactly the way that was anticipated by the copyright strategy of the Linux kernel. If they decided at this point that they were wrong that that strategy was good, well that is them realizing that they were bad in the past, it doesn't make the one guy who agreed with their original position into a "bad actor."

The accusation that he's a "bad actor" appears to be in "bad faith" as you actually do know what words mean, and what the history of this issue is.

He's being made a scapegoat entirely because so many "open source" people don't want to admit that the Free Software Foundation was right about copyright assignments. They have to run around lying to each other because they can't admit that St. Ignucius was Right!

Re: Ah, so....

[Aighearach]

While I normally am happy to join in complaining about people speaking for others, here he only declares that some "us" exists, and have a shared experience.

As he has actually followers in real life on this very topic, it seems rather obvious that he can represent anything he says as being the opinion of "us" instead of himself.

Notice you're the one saying his "us" would have to be all of Free Software, not him?

Re: Ah, so....

[Bruce+Perens]

The kernel developers have some chance of bringing suits, and all who would actually do so had already offered much longer periods for infringers to resolve their issues before this agreement. Companies that are involved in Open Source software have a strong business reason not to sue and scare customers away. So, there is a pretty big element of posturing IMO.

And if the kernel team are now so enamored of GPL3's terms, why don't they adopt the license, which they so defamed when it came out?

I am not convinced that McHardy is discovering new infringements. Thus, the parties he has gone after have probably been informed years ago, perhaps by another member of the kernel team or SFC. This doesn't mean I think McHardy's nice.

The last time I had a legal argument with you, you spouted a lot of stuff that it turned out the court tossed aside in one sentence. So, I am dubious about your representations of your standing as an attorney or what you've done for your customers.

Re: Ah, so....

[DRJlaw]

The last time I had a legal argument with you, you spouted a lot of stuff that it turned out the court tossed aside in one sentence. So, I am dubious about your representations of your standing as an attorney or what you've done for your customers.

I'm sorry, Bruce, but are you referring to that nonsense where you claimed that customers of a distributor who received GPLv2 software would be violating the GPLv2 if their distributor had violated the GPLv2 because they had not received a valid license?

Do you care to provide a link to that opinion and to identify the "one sentence," because Open Source Security, Inc. and Bradley Spengler v. Bruce Perens did not rule on whether the statement was true or not - merely that Spengler could not stop you from publishing your (erroneous) analysis.

I'm pretty sure that I never opined on whether their suit against you would succeed -- that was a fool's errand. Come back to me when someone successfully sues one of Open Source Security, Inc.'s customers for infringement.

Re: Ah, so....

[DRJlaw]

The last time I had a legal argument with you, you spouted a lot of stuff that it turned out the court tossed aside in one sentence. So, I am dubious about your representations of your standing as an attorney or what you've done for your customers.

Perhaps that "one sentence" was within this gem:

"Similarly, Mr. Perens -- who is not a lawyer -- voiced an opinion about whether the Grsecurity Access Agreement violated the General Public License. No court has addressed the legal issue. Thus, his 'opinion' is not a 'fact' that can be proven provably false and thus is not actionable as defamation."

Case 3:17-cv-04002-LB Document 53, p. 14 ll. 23-26 (N.D. Cal. Dec. 21, 2017).

Well that certainly proves that your opinion is correct... /s.

Re: Ah, so....

Bruce's analysis of the underlying infringement was correct, and he was counseled by an attorney before publishing.

Re: Ah, so....

Bruce's analysis of the underlying infringement was and is correct, and he was counseled by an attorney before publishing.

At the top...

You find yourself at the top of the slippery side of Mt. Software License.

Companies tired of getting called out for violating your open source license are offering you an olive branch one step down the slippery side.

Think hard before walking out to greet them...

Re:At the top...

[Aighearach]

If you'd stop standing on your head, you could probably see plainly that it is the authors of the software who are reported as having done something, not the users of the software. Whoopsie, you were only off by *-1

Great ! That's exactly what we needed...

[mohsel]

Proprietary touch to the already complicated and overly verbal licenses.

Just keep the damn thing simple. licenses don't need more than a couple of lines to describe what you can and cannot do with the product. until everybody KISS, there will be more and more violations, and corporate lawyers aren't gonna KISS for sure.

Re:Great ! That's exactly what we needed...

[DeBaas]

Just keep the damn thing simple. licenses don't need more than a couple of lines to describe what you can and cannot do with the product. until everybody KISS, there will be more and more violations, and corporate lawyers aren't gonna KISS for sure.

Well I for won't kiss a corporate lawyer either.....

Re:Great ! That's exactly what we needed...

GPL and LGPL are simple unless you want to do dumb things. GPL - you use it, you ship it, you share your code. LGPL - you connect to it, you ship it, you share our code; you modify it, you ship it, you share your code and ours. How hard is that? These companies are looking for a loophole for violations. Violation ramifications are clearly marked on the license. They just want a get-out-of-jail-free card.

Why only for Open Source licenses?

Surely that would benefit commercial licenses as well, wouldn't it?

What about the companies themselves?

[temcat]

Are they going to do the same about their proprietary licenses? Yeah, sure...

Re:What about the companies themselves?

This IS about their proprietary GPL licenses. Even if a thing is licenses GPL, someone *owns* that license. TFA states that, when it is the case that Microsoft is the owner of the license in question, they will give violators a grace period before initiating legal proceedings. Microsoft has every right to enforce or not to enforce copyright licenses for which they are the owners.

However, this points out an interesting loophole in the GPL license. Viz: Altruistic programmer releases GPL licensed product. Microsoft subsidiary makes trivial modifications to product, resulting in new GPL product by the terms of the GPL. Microsoft now takes THAT product and uses it in a non-GPL-compliant way. The onus falls to the owners of the GPL licensed product to initiate legal proceedings against Microsoft... however, the owner of the license is Microsoft-friendly, and neglects to enforce the GPL. Net effect: GPL neutered.

Re:What about the companies themselves?

[Bruce+Perens]

I'm afraid you have to work on your understanding of licensing.

All copyright holders can bring suit. Thus, if some company modifies your GPL software to which you own the copyright, you can still bring suit regarding the part you wrote.

Also, the word "proprietary" in this context is referring to licenses that do not give the rights required in Open Source licenses.

Re:What about the companies themselves?

[temcat]

I meant proprietary as in "not FOSS". For example, the licenses for Windows, Office etc.

Re: What about the companies themselves?

I didn't think it worked that way.

Re:What about the companies themselves?

[drinkypoo]

Also, the word "proprietary" in this context is referring to licenses that do not give the rights required in Open Source licenses.

Ahh, the OSI. Still trying to claim ownership of the term "Open Source" even though it becomes more and more clear that you have no right to do so.

Re:What about the companies themselves?

[Bruce+Perens]

Hi Martin,

I hope you're doing well. As we've previously discussed, the fact that someone else used the words "Open" and "Source" together simply doesn't matter. And nobody but you seems to care about this. Certainly it is your first amendment right to make as much noise as you wish about it, even though as far as I can tell nobody's really listening and your effort serves only to bring the heat death of the universe a millisecond closer.

Other than this particular tilting at a windmill, you seem to be a nice person and have my best wishes.

Thanks

Bruce

Re:What about the companies themselves?

[drinkypoo]

I hope you're doing well. As we've previously discussed, the fact that someone else used the words "Open" and "Source" together simply doesn't matter.

It matters very much. It matters because you're attempting to redefine the phrase to mean something other than what it actually means, and what it meant before you ever even heard the term, let alone claim to have been present at its co-creation. If it didn't matter, then you frauds at the OSI would stop lying about its creation.

Certainly it is your first amendment right to make as much noise as you wish about it, even though as far as I can tell nobody's really listening and your effort serves only to bring the heat death of the universe a millisecond closer.

People are listening. And it will be relevant when the OSI inevitably attempts to copyright the term, which is clearly what these attempts at redefinition are about. Members of the OSI (including, as I recall, yourself) are on record as regretting not attempting to copyright it previously, at the height of your reputation — when the organization was new, and accomplishing things.

Re:What about the companies themselves?

[Bruce+Perens]

Trademark, not copyright. I suspect that ship has sailed. Note also that there are trademark categories, one does not register the word for all possible uses.

It also seems to me quite silly for you to rail about this because SCO, the organization that inanely tried to sink the ship of Linux, used the term once, not meaning the same thing, back when they were still called Caldera and were releasing the source for DR-DOS.

Perhaps you should bother Intel about previous uses of their corporate name as a short form of "intelligence". Or Tesla, named after a scientist who might not even have approved of them.

Re:What about the companies themselves?

[Aighearach]

I don't think he misunderstood proprietary, rather he was using a broader definition to make a funny statement that is true as he said it, but has the same words as a false thing that pedants might jump at. It is perhaps a disguised invitation to think more carefully about the meaning of the words used, instead of just glancing at them to figure out which team is Virtuous.

But then he misunderstands "loophole," so that really ruins it for me. Both as word play, and as a valid point.

Re:What about the companies themselves?

[Aighearach]

That isn't how words work.

If a phrase is known to have a specific meaning beyond the meaning of the constituent words, that doesn't somehow preclude other meanings of that same combination of words. Just as a word having a meaning doesn't stop it from having a second meaning.

All the known meanings of a phrase are correct, just as all the known meanings of a word are correct. The only time the meaning is incorrect is when it is not internally consistent, or when the speaker decides that they used the wrong word.

Don't be a false pedant, learn that English is an open language and that complaints about what words are used should be focused on either internal consistency of the statement, or style. The vast majority of purported English language corrections are in fact merely false pedanticisms whose only real claim is an appeal to style.

Compare to the French language, which has an official Authority to tell you what is correct or not.

Re:What about the companies themselves?

[drinkypoo]

Whee, my ISP went down literally in the middle of my writing this comment, but I saved it to notepad ahead of submission because I am used to them (Digital Path) failing miserably. They're not even going to send someone out to look at it for several days. What country is this? I thought I lived in California, not Afghanistan.

Anyway, back to topic.

Trademark, not copyright.

Yes, of course, trademark. That was a foolish error, of which I am of course as capable as anyone. The point, however, stands.

I suspect that ship has sailed.

So why the ongoing bullshit claims about inventing the phrase? There's a new attempt to falsely claim its creation every year or so. Is it just about self-aggrandizement? You people feeling insecure?

Note also that there are trademark categories, one does not register the word for all possible uses.

While that is completely true, we're clearly talking about the same thing here.

It also seems to me quite silly for you to rail about this because SCO, the organization that inanely tried to sink the ship of Linux, used the term once, not meaning the same thing, back when they were still called Caldera and were releasing the source for DR-DOS.

It only sounds silly to people who don't know what I'm (before your last comment, I would have said "we're") talking about. For one thing, the company was not SCO at the time of the press release; it was Caldera. In addition, I know more than a handful of people who worked for the actual, original hot-tub-and-fizzbeer SCO way back in the way back, before Caldera was even founded by Ransom Love. At the time, SCO was just as much a champion of open standards as any other Unix vendor. I'm sure you have passionate feelings about The SCO Group, but that has little to nothing to do with the SCO of the day and you seem to be confused about the details. Finally, the fact that they used the term before you, but not meaning the same thing you mean, is precisely the point I've raised. Thanks for really hammering it home, though.

Perhaps you should bother Intel about previous uses of their corporate name as a short form of "intelligence". Or Tesla, named after a scientist who might not even have approved of them.

Intel and Tesla aren't bothering ME with their silly names. Intel isn't trying to redefine the term "intel" as used in the intelligence community. Tesla isn't trying to claim that Tesla invented their car. But the OSI is trying to claim that it invented the phrase "Open Source" as pertains to software, and that it gets to determine (at least partially on that basis) what is and what is not "Open Source Software" which was a phrase provably already in use years before recent claims to the contrary which — if true — would have strengthened the OSI's position in this regard. Since the claims are false, they do the opposite. Continually claiming to have been involved in the invention of a phrase which predates your claim by years makes you a liar. Why do you and your pals over there want so very much to be liars? Don't you think that's going to hurt your credibility in the long term? These facts aren't going to just go away. I found them out with google, and by doing a little old-fashioned reporting. Anyone else can do the same, though I've saved them the trouble. When the inevitable trademark claim (whatever you say about it, since you're not trustworthy anyway, should be ignored) goes to court, no leg work will have to be done, because I've done it already. I've identified all the key witnesses and the most relevant evidence to disprove such a claim. So why not just stop wasting your time telling lies?

Re:What about the companies themselves?

[drinkypoo]

"All the known meanings of a phrase are correct,"

No, that is abject bullshit. The OSI is attempting to invent am invalid meaning out of whole cloth, and support that invention with a deliberate falsehood, a total fairy tale. If it weren't relevant they wouldn't have to keep telling these lies. They keep lying about invention of the phrase specifically because it IS how words work. They can call a license OSI-approved, but they have no right whatsoever to decide what is or is not "open source", "open source software", or an "open source license".

Re:What about the companies themselves?

[david_thornley]

No, your claims of prescriptive linguistics are bovine exhaust. There is nothing invalid about the meaning OSI applies to the phrase "Open Source". It's common for people to take words or short phrases and add additional meanings.

The way words work is that they have meanings, which can change over time, and phrases can mean something other than what their constituent words mean. A vacuum cleaner does not clean a vacuum. It doesn't create a vacuum, and won't even work in a vacuum. It really has nothing to do with vacuums, but the phrase has a widely understood meaning.

Words and phrases have meanings if a reasonable number of people understand the words or phrases as having that meaning. Lots of people understand "Open Source" as "software with an OSI-approved license", so that's a valid meaning.

Re:What about the companies themselves?

[Bruce+Perens]

I thought I lived in California, not Afghanistan.

No, I live in California. You live in the State of Jefferson, where there is "more freedom" (so that rich folks like your internet provider, their executives, and their venture capitalists don't have to concern themselves with poor folks like you), lower taxes (so that the folks who would have protected you all have to get jobs elsewhere), and less government (meaning they don't give a s**t what happens to you anyway). Might as well be Afghanistan.

I was a little closer to the Caldera/SCO situation than you sound. Besides knowing many of the players, I had stock in the company before they got really bad. Ray Noorda was the real founder of Caldera. Ransom is a nice guy, but never functioned near that level and anyway they didn't ever let him run the company. He was just the spokesman. The way the Noorda family let Yarrow run off with SCO instead of continuing legal action against him is just insane, caused us unending grief, and appears to have resulted in their only daughter's suicide as well as that of Robert Penrose.

I have no problem with saying that Caldera used the two words in sequence once. It's just completely irrelevant.

It's all fake

[Bruce+Perens]

The companies involved have never been known to bring suit regarding Open Source licenses. The promise to give a cure period is thus hollow.

Fox fixing the hen-house

[Tablizer]

Microsoft is as likely to cure OSS licensing problems as undertakers are to cure cancer.

Re:Fox fixing the hen-house

I wouldn't be quite so cynical. The President of Microsoft is a lawyer, and out of my small group of friends, three are lawyers that work at Microsoft. I'm sure they would like to decrease their legal costs. I know their move to Git was held-up for months by their lawyers.

Re:Fox fixing the hen-house

[stooo]

>> three are lawyers that work at Microsoft. I'm sure they would like to decrease their legal costs. I know their move to Git was held-up for months by their lawyers.
Microsoft should hire programmers. Not lawyers.
You should search some new friends :)

Re:Fox fixing the hen-house

Microsoft should hire programmers. Not lawyers.

You need both to run a mid-size or larger company effectively.

Not every company is Oracle with an army of lawyers on the offensive, deciding which hostages customers they're going to beat up today. The internal lawyers I deal with are out there making sure I don't do something that is going to run afoul of a contract that I wasn't aware of, a trademark someone else filed, etc. The IP attorneys we have are amazingly technical -- they can read through a patent, decide whether the O(n) vs. O(n^2) algorithm description I've pseudocoded runs afoul of it, and figure out what we need to license.

I don't work at Microsoft, but my guess is they have a lot of third-party IP that they needed to figure out if it could be adequately protected in the new Git system. Quite often, you'll buy a solution that can only be used by one team for one use case, and you need to take adequate steps to make sure it can't be inadvertently used more liberally (this is hard to ensure at scale).

It might be regrettable that we need to have lawyers in the first place, but I wouldn't want to run a company without a competent one.

Re:Fox fixing the hen-house

[Bruce+Perens]

Not every company is Oracle with an army of lawyers on the offensive, deciding which hostages customers they're going to beat up today.

No, but having spent a long time fighting Microsoft's lawyers when they were working to get royalty-bearing patents in Internet standards, which would have been bad for Open Source, I think they are guilty of the same sins as Oracle.

The Easiest Cure...

[CRB9000]

Surgeon Microsoft has advised the patient, "Sometimes, the easiest cure is to kill the patient."

Lets 'Cure' the Issues in the MS EULA

I'm tired of being force-fed a EULA from a virtual monopoly.

I'm confused...

[TheFakeTimCook]

...Is this is "Extend" or "Extinguish" phase?

It's surely one or the other.

Re:I'm confused...

[stooo]

MS is confused also

Re:I'm confused...

I'm fairly certain this is extinguish, but dressed up as extend.

Free Software is Slave Labor

When you code Free Software, you will not get paid. Eveyone will take your hard work and give you nothing in return. Your life will be even worse than the life of a slave. Slave owners historically had an obligation to feed and clothe and house their slaves. Your users will take from you and give you nothing. You will work menial jobs by day to support your coding labor by night. You will get no sleep, you will get no gratitude, you will live in poverty, and you will die in the gutter.

When you code Free Software, you lose.

Re:Free Software is Slave Labor

I know it's less of a benefit to myself to develop free software, but if you think that's the point of free software you do not understand it at all.

People like copyleft licenses because they want the power and freedom to modify their programs as they wish.
The reasons for setting a copyleft license is altruistic because you want others who use your software to be able to take advantage of that and force all derivative works to do the same.

Comparing it to slaves is simply put insane.

MIT is the cure

The MIT license is the cure. It's the shortest blurb of text that is the most open license with the fewest repercussions. I always look for MIT software so I don't have to worry about copyright licensing and compatibility.

Taking the teeth out of GPL

[Humbubba]

Microsoft and the Party Pooper Proprietary just want a Mulligan: no court, no fine - just let them off, and they'll not get caught next time.

If they really wanted "a more balanced approach", they would give a Mulligan to anyone caught using their code. And just to be fair and balanced, they would need to make all of their code available for everyone's perusal. Yeah, right. That's going to happen.

You are nuts

Everyone has a choice of how they license their code. To attempt to coerce someone to license their code in any manner is nuts. That has nothing to do with open source, BSD, GPL, or proprietary software.

No Legal Standing

Simply put - These companies do not have any legal standing on any copyright issues unless they hold the god damn copyright. So what they're doing is stepping between an infringer and the copyright hold to indemnify the infringer! Just the god damn deep pockets I wanted to go after for the infringement - companies they need to be smacked down hard not with a clue-by-four but with a War Hammer 99000.

Still acknowledging organized crime and stealing!

The problem in ALL of them, are that they are still licenses. Thereby still acting as if concepts like "copyright" or "intellectual property" were legitimate, and not merely the handing of privileges to criminals so that they can rake in money without working for it.

I use only one (non-)license on all my software. The "NOLICENSE license":

### NOLICENSE license ###

Nobody is allowed to do anything with this data/software/information. AT ALL.

Non-normative:
I will not prosecute anyone copying my software or doing anything with it, IF, and only IF that person herself does not ever employ the concepts of "intellectual property" (like "copyright", "patents", etc) in any way, shape or form. If, however, that person employs such concepts even once, any action of any kind, done by that person, with this data/software/information, will also be treated by those same rules she employed, and hence persecuted with all available forces.

The intention is, to get people to deliberately employ civil disobedience and reject "intellectual property" concepts, and prevent them from ever using those concepts again, after having used my software even once. If they don't like it, they can of course just not use my software, and fuck right off! Fucking organized criminals / pirates!

sure

[sad_]

'fix' the license problem.
and it's a problem for who, exactly?
riiiiight...

Translation:

[rcharbon]

"When we get caught stealing, we get to make it go away instead of paying any penalties. It's the American way."

Re: Ah, so.... GRSecurity is infringing

The GPLv2 forbids the imposition of additional restrictive terms. GRSecurity imposed an additional restrictive term. No you cannot be "cute" by placing the additional term in a separate writing, verbal agreement, or course of doing business: it is an additional term no-matter how you memorialize it (or even if you choose not to memorialize it).
And yes: IAAL.

"You may not restrict their rights, but that's not what GrSecurity is doing."
Yes it is. GrSecurity is assessing a penalty for the exercise of a explicitly permitted action. It is a restriction and a violation of the license grant.
Argue all you want. You are simply wrong.

GRSecurity is violating section 6 of the GPL2

The GPLv2 forbids the imposition of additional restrictive terms. GRSecurity imposed an additional restrictive term. No you cannot be "cute" by placing the additional term in a separate writing, verbal agreement, or course of doing business: it is an additional term no-matter how you memorialize it (or even if you choose not to memorialize it).
And yes: IAAL.

"You may not restrict their rights, but that's not what GrSecurity is doing."
Yes it is. GrSecurity is assessing a penalty for the exercise of a explicitly permitted action. It is a restriction and a violation of the license grant.
Argue all you want. You are simply wrong

Re: Ah, so.... GRSecurity is Blatanly violating

"You may not impose any further restrictions on the recipients' exercise of the rights granted herein"

GPLv2 forbids additional restrictive terms added to the agreement between the licencee and those to whom the licensee distributes the work (or derivative work). (distributees)
Terms can be memorialized or not. They can be verbal, be evinced by a course of business dealings, or be in a writing.
Here the additional terms added to the agreement were in a writing (they are memorialized).

The writing even outlines various penalties to be assessed if the client makes use of the rights granted by the original grantor vs the newly added restriction by GRSecurity / Brad Spengler!

HEY SHLUB. Who's case is going before the higher c

"I'm sorry, Bruce, but are you referring to that nonsen"

Hey, shlub, who's case is going before the 9th circuit and who's is not?

I think Bruce has superior lawyers than the likes of you.

Hopefully they'll argue there about the root of this case, like Brad Spengler lawyer wants.
It is sad that kernel developers do not protect their intellectual property interests; of-course what else can be expected from grass-eaters?

GRSecurity Blantantly violationg section 6, GPL2

"You may not impose any further restrictions on the recipients' exercise of the rights granted herein"

GPLv2 forbids additional restrictive terms added to the agreement between the licencee and those to whom the licensee distributes the work (or derivative work). (distributees)
Terms can be memorialized or not. They can be verbal, be evinced by a course of business dealings, or be in a writing.
Here the additional terms added to the agreement were in a writing (they are memorialized)..

The writing even outlines various penalties to be assessed if the client makes use of the rights granted by the original grantor vs the newly added restriction by GRSecurity / Brad Spengler!

GrSecurity violating "no additional restrictive te

https://perens.com/2017/06/28/...

Posted on June 28, 2017 by Bruce
Warning: Grsecurity: Potential contributory infringement and breach of contract risk for customers

Itâ(TM)s my strong opinion that your company should avoid the Grsecurity product sold at grsecurity.net because it presents a contributory infringement and breach of contract risk.

Grsecurity is a patch for the Linux kernel which, it is claimed, improves its security. It is a derivative work of the Linux kernel which touches the kernel internals in many different places. It is inseparable from Linux and can not work without it. it would fail a fair-use test (obviously, ask offline if you donâ(TM)t understand). Because of its strongly derivative nature of the kernel, it must be under the GPL version 2 license, or a license compatible with the GPL and with terms no more restrictive than the GPL. Earlier versions were distributed under GPL version 2.

Currently, Grsecurity is a commercial product and is distributed only to paying customers. Under their Stable Patch Access Agreement, customers are warned that if they redistribute the Grsecurity patch, as would be their right under the GPL, that they will be assessed a penalty: they will no longer be allowed to be customers, and will not be granted access to any further versions of Grsecurity. GPL version 2 section 6 explicitly prohibits the addition of terms such as this redistribution prohibition.

By operating under their policy of terminating customer relations upon distribution of their GPL-licensed software, Open Source Security Inc., the owner of Grsecurity, creates an expectation that the customerâ(TM)s business will be damaged by losing access to support and later versions of the product, if that customer exercises their re-distribution right under the GPL license. Grsecurityâ(TM)s Stable Patch Access Agreement adds a term to the GPL prohibiting distribution or creating a penalty for distribution. GPL section 6 specifically prohibits any addition of terms. Thus, the GPL license, which allows Grsecurity to create its derivative work of the Linux kernel, terminates, and the copyright of the Linux Kernel is infringed. The GPL does not apply when Grsecurity first ships the work to the customer, and thus the customer has paid for an unlicensed infringing derivative work of the Linux kernel developers with all rights reserved. The contract from the Linux kernel developers to both Grsecurity and the customer which is inherent in the GPL is breached.

As a customer, itâ(TM)s my opinion that you would be subject to both contributory infringement and breach of contract by employing this product in conjunction with the Linux kernel under the no-redistribution policy currently employed by Grsecurity.

I have previously endorsed a company that distributes enhanced versions of GPL software to paying customers, but that company operated differently (and in a way that I would recommend to Grsecurity). They did not make any threat to customers regarding redistribution. They publicly distributed their commercial version within 9 months to one year after its customer-only distribution.

This other company was essentially receiving payment from its customers for the work of making new GPL software available to the public after a relatively short delay, and thus they were doing a public benefit and were, IMO, in compliance with the letter of GPL though perhaps not the spirit. In contrast, Grsecurity does no redeeming public service, and does not allow any redistribution of their Linux derivative, in direct contravention to the GPL terms.

In the public interest, I am willing to discuss this issue with companies and their legal counsel, under NDA, without charge.

I am an intellectual property and technology specialist who advises attorneys, not an attorney. This is my opinion and is offered as advice to your attorney. Please show this to him or her. Under the law of most states, your attorney who is contracted to you is the only party who can provide you with legal advice.

Re: Ah, so.... GRSecurity is infringing

[DRJlaw]

Argue all you want. You are simply wrong.

The GPLv2 does not impose any obligation to provide current, much less future support, to distributed code.

The GRSecurity "separate writing" only terminates an obligation to provide future support (updates and source code to update) if the source code is disclosed.

Ego, it is not an "additional restrictive term" under the GPL.

It is you who is simply wrong.

Re:HEY SHLUB. Who's case is going before the highe

[DRJlaw]

Hey, shlub, who's case is going before the 9th circuit and who's is not?

Not yours. Potentially because you can't distinguish between a contraction (who's) and a possessive (whose).

I think Bruce has superior lawyers than the likes of you.

And I think that a monkey could have beaten that SLAPP suit, which did not rule on whether there actually was any GPLv2 violation or not.

Hopefully they'll argue there about the root of this case, like Brad Spengler lawyer wants.

9 months running says that it doesn't happen. Plus Bruce lacks standing to sue.