Governance with FOSSology and FOSSBazaar: Rights and Licensing
At CeBIT Open Source 2009 Martin Michlmayr, past Debian project lead, presented his current projects FOSSology and FOSSBazaar, and spoke about the role his employer Hewlett-Packard is giving him in the governance project and how the FOSSBazaar work group is organized within the Linux Foundation.
Britta Wülfing of Linux Magazine Online interviewed Michlmayr after his talk to find out more about his work at the Open Source Initiative (OSI) and the European Union Public License (EUPL). Here are the results of that conversation.
LMO: To whom is FOSSBazaar targeted?
Michlmayr: FOSSBazaar is clearly enterprise-oriented, not necessarily directed at technologists, but more to managers, lawmakers, procurement officers. With this project we want to cover thematically the entire bandwidth of Linux and Open Source.
LMO: What interest does HP have in it?
Michlmayr: HP has to do this work anyway with all its products and programs. It has to be clear for each software what licenses and rights are attached to it, how they are to be maintained and supported. We have to do it, everyone has to do it. Why not together then?
LMO: There are already several projects concerned with this topic, for example the Freedom Task Force of the Free Software Foundation or Harald Welte with gpl-violoations.org . Are there differences or do you work together?
Michlmayr: Yes, we're working together on certain levels. We have intensive discussions on mailing lists, and we're providing seminars together with the French INRIA [National Institute for Research in Computer Science and Control] research institute.
LMO: How is the project adopted by enterprises?
Michlmayr: We're working with a platform that everyone can access. Truthfully many enterprises apparently have a problem in openly talking or writing about licensing and rights. That requires some convincing on our part.
LMO: The term "governance" might be considered a body of rules and standards, which seems somewhat unwieldy. Isn't it a bit daunting for smaller and middle sized enterprises?
Michlmayr: That's a hard one. We don't want to instill any FUD on anyone, but simply clarify. Of course some examples present some problems, such as when a single software includes dozens of Open Source licenses. We'd rather like to collect examples of how many projects actually include only one license.
LMO: The plethora of licenses is always a hot topic in the OSI, where you're also active. There's been a suggestion to limit things to three licenses. What's your take on this?
Michlmayr: Whether to limit things realistically to three licenses is a good question. But I feel that everyone involved in this is agreed certainly on limiting them. That's why careful thought is given to new licenses and if they should be distributed. There are obviously vanity factors involved when a license happens to bear the name of its issuer. But one new license is bound to be of true value in the near future: the EUPL [European Union Public License]. For the first time we'd have a license available in all European languages and valid everywhere, that is, all translations have been legally scrutinized. Also of practical value is that EUPL code can be converted to GPL code.
LMO: When can we expect to see OSI approval of the EUPL?
Michlmayr: We can't give an exact date, but it's bound to happen soon.
Subscribe to our Linux Newsletters
Find Linux and Open Source Jobs
Subscribe to our ADMIN Newsletters
Support Our Work
Linux Magazine content is made possible with support from readers like you. Please consider contributing when you’ve found an article to be beneficial.
News
-
Red Hat Adds New Deployment Option for Enterprise Linux Platforms
Red Hat has re-imagined enterprise Linux for an AI future with Image Mode.
-
OSJH and LPI Release 2024 Open Source Pros Job Survey Results
See what open source professionals look for in a new role.
-
Proton 9.0-1 Released to Improve Gaming with Steam
The latest release of Proton 9 adds several improvements and fixes an issue that has been problematic for Linux users.
-
So Long Neofetch and Thanks for the Info
Today is a day that every Linux user who enjoys bragging about their system(s) will mourn, as Neofetch has come to an end.
-
Ubuntu 24.04 Comes with a “Flaw"
If you're thinking you might want to upgrade from your current Ubuntu release to the latest, there's something you might want to consider before doing so.
-
Canonical Releases Ubuntu 24.04
After a brief pause because of the XZ vulnerability, Ubuntu 24.04 is now available for install.
-
Linux Servers Targeted by Akira Ransomware
A group of bad actors who have already extorted $42 million have their sights set on the Linux platform.
-
TUXEDO Computers Unveils Linux Laptop Featuring AMD Ryzen CPU
This latest release is the first laptop to include the new CPU from Ryzen and Linux preinstalled.
-
XZ Gets the All-Clear
The back door xz vulnerability has been officially reverted for Fedora 40 and versions 38 and 39 were never affected.
-
Canonical Collaborates with Qualcomm on New Venture
This new joint effort is geared toward bringing Ubuntu and Ubuntu Core to Qualcomm-powered devices.