On 01/31/2014 01:20 PM, Tommy Nevtelen wrote:
> On Fri, Jan 31, 2014 at 08:47:41AM +0100, Janne Johansson wrote:
>> On 01/30/2014 10:55 PM, Jeremiah C. Foster wrote:
>>>
>>> "Öppen källkod", translated to English as "Open Source code", is not
>>> appropriate when it comes to information security. Information needs
>>> to be kept and transmitted in systems with the ability to encrypt
>>> information using strong encryption. Strong encryption needs to be
>>> auditable. Auditable code needs to be shared under a license that has
>>> strong copyleft, a Free Software license. This is why tools like Gnu
>>
>> I'd say this is an opinion and not a fact.
>>
>>> privacy guard are GPL v3, to ensure that anyone can audit and implement
>>> strong encryption. Open Source does not provide the same guarantees.
>>
>> I don't see people having a hard time auditing OpenSSL due to the
>> license, and that isn't GPLv3.
>>
>
> What I think he means is that with Open Source licenses you can make
> propritary producs that are changed in a way that differs from public
> versions of openssl. If our goal is to make the EU run code that is auditable
> then we need to have a license that guarantees this. But that could ofcourse
> be solved with some law or regulation which would provide a safeguard
> against propritary binaries. But why not use a license that guarantees this
> from the beginning?
I'd say there are multiple errors in this statement.
- Open source is widely consider the best guardian for information
security (as you all probably know). It is _very_ appropriate.
- GPLv3 is an open source license.
Författaren verkar lite förvirrad när det gäller open source och de
olika licenser som faller under begreppet (där GPL i dess olika
versioner är några av dem)
http://opensource.org/
Proprietära binärer är proprietär mjukvara och inte open source.
Det finns flera licenser skapade av EU för olika ändamål.
Men nu börjar vi visst drifta från ämnet :-)
_______________________________________________
http://www.foss-sthlm.se/
http://cool.haxx.se/cgi-bin/mailman/listinfo/foss-sthlm
Received on 2014-01-31