Contributed by jose on from the crypto dept.
"In a message from Theo, sent to the misc@ mailing list:I have truncated the message below, but you can find Theo's full message here and the whole thread on the subject in the mailing list archives . The subject is the inquiry is donation by Sun of ECC support to the OpenSSL project. While having ECC would be very nice, at what cost do we accept such a gift?"In such a way, by means of the slippery slope, a free software project becomes not as free, and eventually, less and less free.
Before anyone speaks up about and says "that restriction does not affect me". It does indirectly affect you. It means that some other vendor that uses this code, and subsequently ends up having a spat with Sun, ends up wasting money on legal efforts, and our entire society pays for that. My take on it, is that this is the way the legal industry ensures itself future work.
On the other hand, here in OpenBSD land we will continue to strive to make our software more and more free. We've been squishing odd license terms which contain non-free restrictions throughout the source tree for about 2 years now."
"
(Comments are closed)
By Anonymous Coward () on
Tell it like it is and fork away for freedom.
By Anonymous Coward () on
By Anonymous Coward () on
Comments
By Anonymous Coward () on
I believe that time has shown that Theo's decisions of what to bring in, take out, and completely exclude have proven very fruitful.
It helps create the best, most secure BSD Licenced OS around. You might not see it, but licensing is VERY important.
Comments
By mirabile () on
Comments
By mirabile () on
not me (I just followed the instructions).
By Anonymous Coward () on
By Anonymous Coward () on
Because you get OpenSSH, pf, and even OpenBSD itself.
I hope he keeps throwing tantrums, it makes my life and my work easier!
By Anonymous Coward () on
Tantrum? You must be imagining things.
You may as well give up trying to misdirect the OpenBSD users here with facetious and rhetorical questions. We know better. Maybe someday you will too when you learn that 'free' software doesn't just mean that you don't have to pay cash for it.
Right now, it means more that you can imagine. Practice imagining something other than imaginary tantrums on the parts of others. You'll feel better for it.
By Anonymous Coward () on
What you be smoking, because I wanna stay away from it....
By Anonymous Coward () on
Comments
By Anonymous Coward () on
We dont like that.
We circumvent it legally.
We be happy, mon!
Comments
By Anonymous Coward () on
Comments
By lt () on
Can't say the same about the license on the CD images though.
So, why do you say the BSD license is restrictive?
By Anonymous Coward () on
Er... the CD images are copyrighted - I didn't notice anything about a specific -license- for the CD's.
Please read the FAQ before posting incorrect information. Here's a link to help you out:
http://www.openbsd.org/faq/faq3.html#ISO
Comments
By Anonymous Coward () on
By Anonymous Coward () on
I LIKE GRAVY MON!
By Anonymous Coward () on
Comments
By Anonymous Coward () on
IANAL, but I don't think those types of clauses hold up...
By Janne Johansson () on
You use/deploy/have ECC because its there.
You develop non-free code X.
Sun steals code X.
You want to sue Sun.
Sun sues you back for using ECC.
See how this leads to you getting screwed bigtime?
It's not about using ECC per se, its about accepting
that Sun will make you bend over if they steal
_your_ stuff. What the license is saying, it that
you let them do whatever they like, and if you
want to sue, you already lost.
By Anonymous Coward () on
By Anonymous Coward () on
Declaration of non-responsibility is for the intent of nonsuitability. The directly makes the code more free as MORE people contribute, there is NO STATED accepted use for the code, and there is NO OPINION granted of such uses. It does afford legal protection.
However, that is clearly and blatently different than a legally binding constraint of a license aka contract of not being able to sue for simple use.
Also, the context of the license must be taken into your opinion--Sun is a competitive company. The OBSD team/project/community is not a for capitalistic (I'm not saying there is anything wrong with capitalism, but there is a difference in how one thinks and approaches legal battles) intentions.
By Anonymous Coward () on
Comments
By <font color="#336666"><b>Re: Pay a real lawyer<- Not the Point< () on
Comments
By <font color="#336666"><b>Re: Pay a real lawyer<- Not the Point< () on
By <font color="#336666"><b>Re: Pay a real lawyer<- Not the Point< () on
By D Dulay () on
* Is Theo rejecting Sun's contribution because of its new licensing limitations?
* Is Theo rejecting OpenSSL because the entire package now includes the restrictive Sun licensing?
Or,
* Is Theo rejecting OpenSSL because they accepted this code from Sun with the new limitations?
Or possibly something else?
Comments
By Anonymous Coward () on
By Anonymous Coward () on
Sun's license imposes restrictions on the use and modification of their code. The entire OpenSSL project is not licensed under the new conditions. But the OpenSSL project has accepted such conditions in what may eventually become a core part of their software. Consequently the entire OpenSSL project, and its ensemble of source files, is not, taken together, free; it contains tainted components.
I hope, however, that OpenSSL does not fork. I hope instead that the OpenSSL developers relent and agree to remove Sun's code so long as Sun's restrictions are attached.
Comments
By D Dulay () on
Also see Markus Friedel's excellent summary that enumerates the affected parts of OpenSSL, http://marc.theaimsgroup.com/?l=openbsd-misc&m=103286728829338&w=2
Very disappointing.
By Anonymous Coward () on
Comments
By Anonymous Coward () on
By Anne onyme () on
b)open-openssl
c)never-see-the-sun-openssl
Comments
By Miod Vallat () miod@openbsd.org on mailto:miod@openbsd.org
The best name is obviously... ajarssl
Comments
By Anonymous Coward () on
oh come on, Miod. did you even give TrustedSSL, ClosedSSL, or MicroSSL a chance?
Comments
By Anonymous Coward () on
Comments
By Anonymous Coward () on
By Anonymous Coward () on
OpenSSchneLl
TheOSSanaL
RealOpenSSL
ROSSL
ROFL
And now more serious:
OpenSSL is already taken, that's too bad...
Comments
By Anonymous Coward () on
OpenOpenSSL.
Comments
By Anonymous Coward () on
Comments
By Ray () rayl@spamcop.net on mailto:rayl@spamcop.net
By Sebastian Stark () on
Comments
By zil0g () on
sounds like 'fossil' doesen't it?
By Anonymous Coward () on
Comments
By RC () on
If it did get taken to court, Sun would loose, as their trademark is more general than "Windows", and Microsoft lost their fight with Lindows.
Comments
By Ray () rayl@spamcop.net on mailto:rayl@spamcop.net
By rdan () on
Comments
By Anonymous Coward () on
Comments
By Anonymous Coward () on
Comments
By click46 () click46@operamail.com on www.genmay.net
theo codes.
get it right.
Comments
By Lamont () lamont@scriptkiddie.org on http://www.scriptkiddie.org
AUTHORS
Emacs was written by Richard Stallman and the Free Soft
ware Foundation. Joachim Martillo and Robert Krawitz
added the X features.
By Anonymous Coward () on
rms -> does what he thinks is right without compromise, no matter who he pisses off.
theo -> *cough*
Comments
By fansipans () on
precisely. and what what he thinks is right is flat wrong. and commie-ish. and viral.
Comments
By Anonymous Coward () on
Comments
By fansipans () on
i am right :)
rms -> does what he thinks is right without
compromise, no matter who he pisses off.
theo -> *cough*
theo only has the same trait to the extent that his external actions & appearance are similar. the underlying motive and intent is wildly different. you could say the same thing about hitler, stalin, pol pot, kim jong il II, just to name a few. does that mean that mean that rms, theo, and a group of murderers share anything important? no. what does matter are their core beliefs. thug murderers want to tell you how to live your life, rms wants to tell you what to do with your software (share it, by force), theo wants to tell you THAT YOU CAN DO ANYTHING YOU WANT WITH HIS SOFTWARE . that is truly free software. closed source baby mulching machines. i have a right to enter into free contracts, others have a right to choose whichever license they see fit for their own software (it's called property!). what i DON'T have a basic, natural, eternal right to is somebody elses source code, regardless of where they got their original code base.
i've said it before, i'll say it again: the gpl is a virus.
Comments
By Anonymous Coward () on
you seem quite closed minded. we agree with each other you dickhead, seems like you just wanted to rant.
oh and theo doesnt look anything like rms. a few miles on a bike and a shave would do rms well.
By Anonymous Coward () on
Theo is not.
(Have you read the GPL? It's not a software license, it's an anarchist manifesto.)
Comments
By Anonymous Coward () on
Comments
By Anonymous Coward () on
By Anonymous Coward () on
By RC () on
"Take that you BSD loving bastards! You should have made everything GPLed!".
If you've never dealt with him, you wont realize how funny that it.
I don't think he'd care. Did he have anything to say about IPF?
This does have all the makings of another IPF situation.
The software was already under a not-quite free-enough license, and now they are adding additional restrictions (which are admittedly not as harsh as IPF's were).
I am a bit concerned about Theo & OpenBSD taking on another project. With the kerberos, and S/Key problems in OpenSSH, it looks like they already don't have enough people to audit and debug the software before a release.
By Talon () on
that broke the camels back. i will no longer use or support OpenBSD either for personal use or for my customers.
I wont stand for an operating system that changes from under my feet every time Theo decides to smoke the good crack that particular day of the week.
A 6 month release cycle is nice if you dont have a farm of servers that constantly see use and have very small if any windows where you cna take the system down for upgrades.
But its even worse when you have core system componets changed out from under your feet (like ipf, and now OpenSSL) when all your worried about is troubble free operation and getting on with the rest of your life.
As far as i can see the only good thign OpenBSD has going for it is the new pf filter. the rest of the functionality can be found in NetBSD or FreeBSD without the political baggage.
I might come back to OpenBSD some day if theo gets hit bya bus and someone more sane takes over the project but its not likely.
Comments
By Anonymous Coward () on
Just so we are all clear, you don't like the OpenBSD team adding new features like pf , but you do, in fact, like the benefits such features give you.
Just so we are all clear.
Functionality was never the point. Secure by default and completely unrestrictive licenses was, and still is. Read the project goals if this wasn't clear to you.
If OpenBSD no longer fits your needs, so be it. Just don't criticize the OpenBSD team for actually following their project goals, just because the no longer coincide with yours.
By ftp () on
By josh () selerius@codefusion.org on mailto:selerius@codefusion.org
By Anonymous Coward () on
Comments
By jose () on http://www.monkey.org/~jose/
i think you mean openssl to forkedssl.
Comments
By Anonymous Coward () on
By bait eater () on
Oh shit 6 month release cycles! OH NOOOOOOO!
Wait, what's wrong with this? You don't like snapshots? Or you want 5+ year release cycles?
And lessee... OpenSSH bullshit - as in, "How dare they have a remote root, those free software people giving me no warranty!" Or... did you mean "Damn them for telling me to upgrade with some notice even before the exploit went public, I really hate forewarning, I want to get bent over the same time as everyone else!"
> i will no longer use or support OpenBSD either for personal use or for my customers.
Cya! You're funny.
> I wont stand for an operating system that changes from under my feet every time Theo decides to smoke the good crack that particular day of the week.
You prefer an opiate?
> A 6 month release cycle is nice if you dont have a farm of servers that constantly see use and have very small if any windows where you cna take the system down for upgrades.
Sorry, if you don't know how to run a server farm and fail over from one old machine to a new one - I can't help you understand how you should really be engineering your network more intelligently. H4> But its even worse when you have core system componets changed out from under your feet (like ipf, and now OpenSSL) when all your worried about is troubble free operation and getting on with the rest of your life.
Hmmm, pf is better than ipf; and ipf (3.0) support wasn't dropped in a big rush. Your other example OpenSSL - well, OpenSSL isn't going away, we're just not going to _add_ new ecc crap. So you are losing, what? Oh right, your argument.
> As far as i can see the only good thign OpenBSD has going for it is the new pf filter. the rest of the functionality can be found in NetBSD or FreeBSD without the political baggage.
No political baggage in NetBSD (cough), yeah - right. Go have fun with FreeBSD's security stance, damnit - where are the advisories?
http://www.freebsd.org/security/index.html seems useless to me. Hmm, code auditing? Nope. Crypto goodies? Er.. no... Solid linux emulation and SMP - hooooraY!
> I might come back to OpenBSD some day if theo gets hit bya bus and someone more sane takes over the project but its not likely.
No, please don't 'come back' - unless you seriously wise up.
Comments
By RC () on
Hey now, don't go trashing SMP just cause some moron is iritating you. I happen to think than OpenBSD would get A LOT more use if it had SMP support on a few platforms (Intel, Sparc).
I happen to know at least a dozen smaller shops that would most likely be using OpenBSD, if not for the fact that they have, or are considering getting MP systems.
By Anonymous Coward () on
It's no obligation to keep systems healthy.
The releases every 6 months are made for your convenience only, because the real system is in current.
You can have as many releases as you want.
It's great job from Theo and the team to develop system this way.
If you are tired with movement you can stay even with 2.0.
You can either get mess of releases, stages, versions from others or freezed for months systems from other others.
I'll get sticked to goals of OBSD.
Bye, bye frustratus.
By Nobody You'd Know () on
As for the release cycle, you are never required to upgrade; for myself, I prefer biannual upgrades, because I like to have bugs fixed and I like the progress of crypto in the system, but if you can't stand the downtime, then maybe you should just upgrade every other release or so? Get a clue, man.
In any case, nobody will miss you, because you're a dumbass, and dumbasses are always more than welcome to go bother somebody else. If you think the only difference between OpenBSD and other BSDs is pf, then very obviously, you're more trouble than you're worth, so why not do us the big favor of never yapping at us again about your imaginary sufferings at the hands of Evil Theo[tm]?
By zil0g () on
ipf -> pf : they even kept the syntax!
(more than others do) *looks at Linux*
and if you don't like upgrading by releases then don't, if you don't like upgrading at all then don't, sorry to hear about your server farm, maybe you can convince your boss to get someone to admin them for you?
sorry about your camel too.
dummie
By Anonymous Coward () on
I have a farm of servers here, and there and another there and I know that the 6-month release cycle makes OS administration a breeze. Wonder why.
Good!
Going by what you've displayed here of your thinking skills and network administration abilities, I can tell you who is more likely to be hit by the bus. Now, put your little tinfoil thinking cap on and ponder, because it ain't Theo and you really do need to know who is more likely to get hit by a bus so that you can get on with the rest of your life.
Have a nice one!
By Anonymous Coward () on
You dislike this as opposed to every other OS that BLAM here's the gold CD, we might finalize in the next, oh, week, maybe 2, maybe 3?
Cripes, they update the software. It's secure. It works. It's free. And you still bitch and bitch. Go to Linux, Darwin, FreeBSD, NetBSD--you'll waste more time updating your bleapin farm patching holes.
Of course, you'll probably have an OBSD firewall in front of it all....
By B.F. () - on -
By sense less () on
You just switch to Windows than, mate... See how you like that. That's not a release cycle, but a continues loop in the wrong direction.
>> But its even worse when you have core system componets changed out from under your feet
See previous remark.
By Lamont Granquist () lamont@scriptkiddie.org on http://www.scriptkiddie.org
So, I did have a pretty hard time deciphering the exact meaning of the legalese. If I'm hitting the crack pipe here, I'd be interested in knowing other people's interpretation of it...
Comments
By Anonymous Coward () on
Unfortunately, one of the troublesome clauses as I see it is:
In particular, 3.i is bad. It means that Sun no longer agrees to ignore any patent infringements you've made if you modify their code, i.e., if you change their stuff, they can sue you. And since the ability to change software is integral to the idea of open source and of free software, this is unacceptable. While I don't want to ascribe hostile motives to Sun, this has the potential to give them control over an important chunk of OpenSSL's code. Sure, ECC may not be popular now, but I expect it will be, especially for consumer electronics (e.g., cell phones). And then there will be no unencumbered ECC implementations, and we'll be screwed.
By Phoenix () phoenix@dominion.ch on mailto:phoenix@dominion.ch
this all sounds silly, but think for a moment... it might work?
Comments
By Anonymous Coward () on
The real solution is to have a community of people--like the OpenBSD community--who care about licenses.
By Anonymous Coward () on
Comments
By Christian Gruber () cgruber@israfil.net on mailto:cgruber@israfil.net
By Anonymous Coward () on
OpenBSD just keeps getting better and better. First it added all the crypto and IPv6 and IPSEC support. Then a truly free OpenSSH. Then a vastly superior ip filter, "pf". Then Apache gets chrooted like it always should have been. Now FreeSSL is in the works. I'm stoked. I've been on this ride since 2.6, and I don't regret a single minute.
Go team go!
Comments
By TheoFan () on
was called 'Open' like 'OpenBSD'.
The best thing is to rename the whole into
Theo* and claim Theo* as a trademark, linke
Easy does.
So we will have TheoBSD, TheoSSL, TheoIPF and
TheoSSH.
Hmm yeh sounds great!
By RC () on
By Anonymous Coward () nobody@bogus.com on mailto:nobody@bogus.com
...err, never mind.
...how about ClosedBSD? the damn thing is supposed to be secure anyway.
By Anonymous Coward () on
By Chris () cwareham@btinternet.com on http://www.btinternet.com/~cwareham/
The hope is that the Sun code will be moved into a dedicated directory, as has been done with the problematic idea code. Then the code can be omitted when building binary packages for release. The source can be shipped with the offending code, and the end user can recompile OpenSSL to add it back in if the patent covenant is not an issue for them.
Chris
Comments
By Anonymous Coward () on
While I agree that this is a patent covenant issue and not a copyright one, I don't think that makes it any less serious: Clause 3.i lets Sun sue you for patent infringement if you modify their code. That's bad. Forking OpenSSL is also bad, so right now I'm hoping that either Sun will change their license terms or someone will contribute unencumbered ECC code.
I suppose I wouldn't care so much if Sun's contribution had been an algorithm like IDEA that one could choose to ignore without any loss of functionality. But, while I admit to not being a crypto-industry expert, I really get the feeling that ignoring ECC will not be so simple.
Maybe I should go out and buy Husemoller or Silverman and Tate.
By knomevol () knomevol@sanctuary.prv on mailto:knomevol@sanctuary.prv
do not forsake the preciousness of the freedom required to be able to build and operate openbsd. if we were in china, we'd be in jail for using it - and theo, he'd have a bullet in the back of his head.
regardless of how insignificant any corporate-license-rhetoric may appear, once it has placed its apparently innocuous self into the system it grows like a cancer. corporate greed doesn't care how clean your water is, or how unbreathable the air is, or how secure your computing is (listening microsoft? we know...) as long as whatever dirty thing they're doing is profitable, they're going to do it.
the act of computing is the act of leveraging your ideas. think freely my friends. take heart that theo is willing to place his world-wide-reputation on the line for the security of your ideas.
i believe theo has made a wise choice.
Comments
By Anonymous Coward () on
By Bad Skater () on
Personal/social/political freedom did not *have* to happen, nor (some might say) *should* it have happened, but it *did* happen. Many who read this post are able to read it because of the sacrifices being made today, and those made many years and centuries ago to secure and ensure freedom.
Similarly, software does not *have* to be free, nor *should* it be free, but it *can* be free. But of all software, it's free software that contributes to the continuing freedom so many hold dear and are willing to give their lives for.
I was going to say that "free software, in it's own small way, contributes... to freedom," but that's not really fair. Given the growing importance of, and dependence on computers and software the world over, free software can actually make a very important contribution to the overall protection of freedom.
By technofiend () on
Frankly, the OpenSSL code is more than a little ugly, a clean-sheet redesign, including an unemcumbered eliptical implementation
is just the thing we need.
By B.F. () - on -