Open Source Initiative Co-Founder Bruce Perens Resigns, Citing Move Toward License 'That Isn't Freedom Respecting'

Bruce Perens (Slashdot reader #3872) co-founded the Open Source Initiative with Eric Raymond in 1998. But on Thursday Perens posted "it seems to me that the organization is rather enthusiastically headed toward accepting a license that isn't freedom respecting. Fine, do it without me, please.

"I asked Patrick to cancel my membership, and I would have unsubscribed from OSI lists, including this one, if your server was working..."

The issue is a new software license drafted by lawyer Van Lindberg called the Cryptographic Autonomy License (or CAL). Another open-source-community leader familiar with the debate -- who spoke with The Register on condition of anonymity -- claimed Lindberg lobbied OSI directors privately to green-light the license, contrary to an approval process that's supposed to be carried out in public.

"I don't think that's an appropriate characterization," said Lindberg, of law firm Dykema, in a phone interview with The Register. "I think there are number of people who from the beginning made up their minds about the Cryptographic Autonomy License. You'll see a lot of people jumping onto any pretext they can find in order to oppose it. With regard to this idea of lobbying, there have been procedural-type communications that I think are entirely reasonable," he added. "But all the substantive debate has been on the license review and license discussion forums...."

Perens said he resigned because the OSI appears to have already decided to accept the license. He said he's headed in a different direction, which he called "coherent open source."

"We've gone the wrong way with licensing," he said, citing the proliferation of software licenses. He believes just three are necessary, AGPLv3, the LGPLv3, and Apache v2.
Meanwhile, the Cryptographic Autonomy License is envisioned for use with the distributed development platform Holo, notes the Register: According to Holo co-founder Arthur Brock, distributed peer-to-peer software needs a license that addresses cryptographic key rights, which is why the Cryptographic Autonomy License has been proposed. "We are trying to say: the only valid way to use our code is if that developer's end-users are the sole authors and controllers of their own private crypto keys," he wrote in a post last year.

Lindberg said the Cryptographic Autonomy License is applicable to current web applications but it more meaningful in the context of distributed workloads and distributed computation, which he contends will become more important as people seek alternatives to the centralization of today's cloud-based systems. "A lot of people are very concerned about this concept of owning your data, owning your computer, having the ability to really control your computing experience and have it not be controlled by your cloud provider," said Lindberg.

Perens said, "It's a good goal but it means you now need to have a lawyer to understand the license and to respond to your users."
Slashdot asked Bruce Perens for details on "Coherent Open Source." Here's what he wrote back...

The "Coherent Open Source" plan asks creators of new work to place it under one of only three licenses: The Affero GPL 3, LGPL3, or Apache 2. These three were chosen because they are all compatible with each other, are all approved of by both OSI and FSF, and they provide a range of permissions suitable for different applications.

The premise here is that having so many different Open Source licenses is in general harmful to the community, due to the combinatorial problem and the need to understand so many of them, and is simply not necessary because each additional license does not bring a high value in innovation or new functionality -- at least in a way that supports the community rather than some company. Yet OSI goes on approving new ones. And the new license submissions tend to depart from the respect for freedom that has made Free Software / Open Source so successful.

If we plan a coherent strategy and go forward with it from here, we start to solve the problem of too many licenses.

All three licenses address the problem of software patents in some way. There is much text shared between AGPL3 and LGPL3, so the effect is sort of like having to learn 2.5 licenses rather than 3. And of course AGPL3 addresses the SaaS problem by requiring SaaS providers to share their modifications, just as the GPL required people to share modifications before SaaS. We should be asking more of companies like Google and Amazon today, since they get so much value from us. But without deviating from the ideals of Free Software / Open Source as some license proposals do.

The biggest criticisms are that it's difficult to combine with these licenses if your project is "GPL2 with no later version". There are several ways for either side of the combination to address that, but they aren't automatic. And I heard from a lawyer who really didn't like the scheme, but as far as I can tell it's just because he wants to do more lawyering.

I am all for the community needing attorneys only when it's time to enforce their licenses, not to figure out their own operations.

Slashdot used to be the place.

[Martin S.]

There was a time when Bruce Perens would have used Slashdot to make his case and answer any questions.

Re:

[wannabe]

That time passed around the same time Cmdr Taco rode off into the sunset.

Re:Slashdot used to be the place.

[ShanghaiBill]

Bruce is an active participant on Slashdot.

He made several posts yesterday [slashdot.org].

Most likely he is just spending Sunday with his family. Or asleep. You don't get a phone call when Slashdot posts an article about you.

Re:

[rmdingler]

You don't get a phone call when Slashdot posts an article about you.

Right, but they still drop leaflets from helicopters over the major population centers.

Re:

[phantomfive]

Right, but they still drop leaflets from helicopters over the major population centers.

It's ok. They're not poisoned.

Re:

[ceoyoyo]

Shit. I hope I didn't miss mine.

Re:

[Martin S.]

Um, my comment was intended to be about how slashdot is no longer the place for breaking geek news; I recall a time when we could slashdot the BBC.

I have the utmost respect for Bruce Perens, he is actually one of public representatives in our field that has never actually disappointed me by going rogue in public or selling out.

Re:

[sdinfoserv]

That is exactly his point... There's no case to make. It's a done deal behind closed doors. The kleptocracy ruling class sees an opportunity to extract a few more dollars... so in come the lawyers.

The OSI was always a slippery slope vs FSF

[ron_ivi]

From the very beginning ESR's OSI was trying too hard to water down the FSF's position on Free Software to try to convince others that instead of "Free Software" they should focus on the OSI's more business friendly "Open Sourceâ". It was a slippery slope then. And finally just slipped down it too far for Bruce.

Re:

[sexconker]

Yup, it's as simple as that. There are way too many different "open source" licenses and no one really understands them, least of all the people who would be in a courtroom when push comes to shove.

If you want to champion free software, then champion free software

Either you have an ideal or you don't. If you're a founder (or co-founder) of something and it turns to shit, look in the mirror.

Re:

[rtb61]

You only need to understand the one you use for your work. FOSS what happens in the USA is really quite rapidly becoming of less and less importance. It will start shifting to what is happening in China, Russia, India and even the EU. So the pressure is off for English speaking FOSS, doesn't matter so much any more what happens in five eyes FOSS, that time is over.

It will be interesting to see what comes out of China with regard to FOSS over the next decade as they likely take the lead in a big way. So how

Re:

[ron_ivi]

You only need to understand the one you use for your work

One?

You need to understand ***all*** the licenses in the components you use for your work.

For example, if you're using PostgreSQL and PostGIS you need to understand both of their (different for good reasons) licenses.

Re:

[Rockoon]

Perhaps this is why there are the two distinct "Free Software" and "Open Source" terminologies.

It was never going to be that they would be interchangeable. The BSD license dates all the way back to ~1990, and for those unaware, the BSD OS was a premier project covered extensively in the premier programmer trade journal Doctor Dobbs, an entire decade before the Open Source Initiative.

OSI named themselves The Open Source Initiative ... clearly never intending to be equivalent to what the FSF was peddling.

Re:

[AndyCater]

Some of us haven't forgiven Bruce for licence proliferation by forking the OSD from the Debian Free Software Guidelinces because he had to be able to sell the idea to business $DEITY preserve us (and if you dig back in the mailing lists, you'll see how apt that is).

Re:

[NotTheSame]

Bruce Perens posts frequently on Slashdot. He is just one of the many "celebrity Slashdotters" who populate this website - others include:

https://slashdot.org/~John+Car... [slashdot.org] (John Carmack)
https://slashdot.org/~CleverNi... [slashdot.org] (Wil Wheaton)

And .... erm ..... many, many more!

Re:Slashdot used to be the place.

[Bruce Perens]

Yeah, but I also have a life, so Valerie and I went for a long walk at Point Pinole, and then for tacos and beer at East Brother brewery. I had a flight with the English Strong, Baltic Porter, Oatmeal Stout, and Russian Imperial Stout. And all of this was probably more fun than Slashdot :-)

Also, for a while the troll situation here was pretty bad. I am watching to see how things go.

Re:

[sp0tter]

*cheers*

Re: Slashdot used to be the place.

[Bruce Perens]

P.S, Stanley is 19, was out of the house and self-supporting as an EMT 2 weeks after high school ended. He is handling 911 calls in Oakland. Brave guy, that means narcan-ing people with opiate overdose, and some wake up angry, multi-person shootings, you name it. He is gaining experience before paramedic school. He'll use his college fund eventually.

Re:

[MrKaos]

Thanks for everything you've done for the open source community Bruce!

Very glad you are here

[raymorris]

Bruce, I'm very glad you are here. Though you seem to have vanished for November. :)

That's okay, I vanished from my other chat for December.

You are one of a few people that I always enjoy discussing things with. Particularly when we disagree - partly because I'm aware that when you and I disagree, you might be right - I might have an opportunity to learn something.

No offense intended

[Martin S.]

As a British real ale fan I'd whole agreed; I polished off the a Christmas gift of a mixed crate of Great Newsome brewery in no time.

AIH, my point was aimed at slashdot, it used to the hub of that sort of communication. There was a time when a news items such as this would have broken here first.

Re:

[goose-incarnated]

Also, for a while the troll situation here was pretty bad. I am watching to see how things go.

You've called black people who were against affirmative action "racists" for "wanting to keep the status quo". You really shouldn't be calling other people trolls.

Re:

[thegarbz]

And all of this was probably more fun than Slashdot :-)

Yes but do enough of those flights in quick succession and you too would be having a completely incoherent argument with a stranger who can't form proper grammatically correct sentences,. kind of like Slashdot but not "on a computer". ... I wonder if that is patented :-)

Re:

[tsstahl]

I wonder if that is patented :-)

Yes, by Og the caveman who first made fun of Ug in cave drawings for not being able to catch a sickly antelope.

But the patent only recently ran out, so you are good to go on a non-obvious variation. However, the copyright has a lot of time remaining.

Re: Slashdot used to be the place.

[Renaissance Slacker]

Tacos and high-gravity beers. Mmmmmmmm

Re:

[HalAtWork]

Happy New Year

Re:

[DNS-and-BIND]

The problem is that these days political dissidents get called trolls as an attempt to discredit discussion. It is assumed that there is only one correct way to view a situation and all others must be wrong and evil. Viewpoint diversity is in real danger.

Re: Slashdot used to be the place.

[Bruce Perens]

If you are just a political dissident, I don't think anyone's going to be concerned about that.

The problem comes when people express misogyny or racial or religious hatred, or pederasty and attempt to clothe those things as dissidence, or these days even conservatism. It isn't either.

Unenforceable

[techno-vampire]

Section 3.1 grants two permissions, both of which run directly counter to the IP laws of any jurisdiction I'm aware of. IANAL, but I can't see this standing up to any court challenge, anywhere in the world or any lawyer suggesting that their client rely on it.

"with respect to the work"

[raymorris]

3.1 has awkward wording. I had to read it twice to understand it. It's saying *with respect the licensed work*, you are given permission to do whatever you want, to do anything that is protected by copyright on the work.

It would probably be better written as:

--
Licensor grants You the world-wide, royalty-free, non-exclusive permission to:
Copy the work
Distribute copies
Distribute derived works
Any other action protected by copyright on the work

The above permissions include a patent license under any patent controlled by the Licensor, to the extent such patent license applies to the Work as distributed by the Licensor.
--

I don't see a problem with 3.1 legally. It's just not written as clearly as it could be.

Re:

[techno-vampire]

You may well be right; IANAL. However, even if you are, that's just waiting for people to abuse it by creative misunderstanding.

Re: Unenforceable

[chas.williams]

Section 4.1.1 seems very broad. Any permission would seem to include modification. So if you make a modification and as long as that modification exists, you must provide access, plus one year. If you remove your modification, it must still exist for at least one additional year so you can never unmodify or cease distribution.

Bad wording again - it refers to 4.4

[raymorris]

The first phrase in 4.1 refers to 4.4.

4.4 says this only applies to people you distribute the work to.

4.2 says source can be provided by a third party.

Taken together, they say:
For one year after you stop distributing it to your customers, one of two things must be available:
A) Have source code available to customers (on your web or ftp site)
B) The source code exists publicly, such as on GitHub

The problem I see is that distributing the source itself triggers 4.1, so you have to make the source code available

Context

[martyros]

The context of the resignation seems to be in response to being called out:

That's out of line, Bruce. I'm not sure where this FUD is coming from, but it's inappropriate.

And the "FUD" in question was this (further down, in response to Bradley Kuhn siding with Bruce):

Don't waste your time, Bradley. They were told not to listen to you, either.

I'm inclined to say I agree with the call-out.

Re:Context

[phantomfive]

It's not really clear to my why they want the OSI approval (see here for their argument on the point [opensource.org]). They are free to use whatever license they want, they don't need the approval of the OSI, and yet they paid lawyers to help get OSI approval.

The license itself goes against the OSI standard [opensource.org] (as I see it), because it restricts the way the software can be used. That is, certain products cannot be built using source code with this license.

Re:

[lgw]

You will never really have the context when it comes to political in0fighting. Best you leave aside opinions of that stuff. The interesting question is: why is the new license not just bad, but intolerably bad in his opinion. Or is it just the perceived perversion of process?

I'd love it Bruce were to pop in and enlighten us on that.

Re:

[jrumney]

I don't know what Bruce Peren's opinion is, but after reading the license, I think it is well intentioned but badly written, probably because the author is a lawyer and decided to write it from scratch rather than improving on an already existing license. A better approach would have been to start from the AGPL, and add the conditions protecting users' data from being hijacked by withholding of encryption keys, which seems to be the key problem this license sets out to solve.

Comment removed

[account_deleted]

Comment removed based on user account deletion

Re:

[postbigbang]

You echo exactly what I thought.

I'm with Perens. The "Open" in open source methodology has been subverted. The OSI needs to be forthcoming about addressing the conundrum, lest its fate be certain and very finite.

Re:

[sexconker]

The "Open" in open source methodology has been subverted.

Hint: The co-founder of the OSI had something to do with that.

Licenses are delusions. Always.

[BAReFO0t]

Open source and licenses are incompatible concepts.

Because open source acknowledges the uncontrollable freedom of information that is an inherent result of the laws of physics. But licenses try to put rules on that freedom. Something that cannot possibly ever work.

But how do we prevent TiVoization and people leeching on us then?

Simple: Do not give anyone a license AT ALL. Simply release a document, stating that you will not prosecute anyone who uses your software in any way, unless they themselves ever try to enforce imaginary property schemes onto the world. And you *expect* people to openly break the "law" by copying your software without a license.
So it is not a license, but merely a public statement, with no legal normativity.

Then, nobody who backs imaginary property, can ever use your software.
And if they try anyway, you of course sue them, using their own weapons against them. And the only legal way out you offer them, is a contract where they give up all their imaginary property shemes for all eternity, and all their works go to the public domain forever. Retroactively too.
They can of course refuse to settle, and go to court. You'll be using Content Mafia math(TM), to calculate the damages they owe you. Bwahahahahaa!
(Payable in transferral of all their imaginary property to you, too, of course. rofl)

Re:Licenses are delusions. Always.

[OldUserBackAgain]

Open source and licenses are incompatible concepts.

On the contrary, open source is very much dependent upon licenses, and depend on copyright (yes, copyright).

When you write something sufficiently unique it is convered by copyright. By licensing your work you give away some of the right given to you under copyright laws, if your will, specified in the license, is followed. In open source it is about derivative work being shared under the same license so we can continue to build on something even though copyright normally would prevent that. So the license is needed.

You might have strong (negative) feelings about copyright, but as long as you live in a society where there are copyright laws you are affected by them.

Because open source acknowledges the uncontrollable freedom of information that is an inherent result of the laws of physics.

There is no such thing. That is the ramblings of an idealistic fanboy without grasp of how society works.

But how do we prevent TiVoization and people leeching on us then?

Simple: Do not give anyone a license AT ALL. Simply release a document, stating that you will not prosecute anyone who uses your software in any way, unless they themselves ever try to enforce imaginary property schemes onto the world. And you *expect* people to openly break the "law" by copying your software without a license. So it is not a license, but merely a public statement, with no legal normativity.

What you are proposing IS a license, even if you choose to call it "a public statement". But brewing your own license might be worse if those trying to exploit your work can find a loophole in it. Stick to the already existing licenses that have been vetted instead of trying to be a smart-ass and reinventing the wheel (poorly).

Re:

[ceoyoyo]

Dude, you don't understand. Information is free as an unavoidable *consequence of the laws of physics*. It doesn't need your copyright, OR your licenses!

Re:

[OldUserBackAgain]

Dude, you don't understand. Information is free as an unavoidable *consequence of the laws of physics*. It doesn't need your copyright, OR your licenses!

Dude, you don't understand. "Information is free as an unavoidable *consequence of the laws of physics*" is not a thing. You might wish it was, but it isn't. As best it is an internet meme. Just repeating the same bullshit over and over again doesn't make it true. What laws of physics are you referring to?

If you want to get really philosophical about stuff and ramble about the laws of physics, nothing is free. Ever. There is always a cost, even to information.

Re:

[ceoyoyo]

Whooosh.... ;)

If you really want to argue this ridiculous point, you should do it with the OP, Barefoot. I wouldn't recommend it though.

Re:

[jeremyp]

Freedom (as in speech) is a human legal concept that has nothing to do with the laws of physics except insofar as humans are ultimately collections of objects that obey the laws of physics.

All property is imaginary in the sense you mean. The only thing stopping you from taking my keys and driving my car away is a human legal framework backed by a strong organisation that can have you thrown into jail.

Furthermore, your position is incoherent. You say tell people to ignore the law but then you advocate prosec

Re:

[ceoyoyo]

Oh dear. I really should have included sarcasm tags.

Re:

[iggymanz]

You're a piece of work, saying you have a scheme for open source that will be enforced by...drumroll... copyright law if anyone violates your wishes.

Contradiction.

Open source relies on copyright; even your imagined "solution" does.

Re:

[91degrees]

But how do we prevent TiVoization and people leeching on us then?

While I like your solution, I think the premise of the question is wrong here.

People aren't leeching. This still seems to be based on the idea that information has an owner. An idea that I think goes counter to the ideals of open source.

If someone uses my code in a closed source project, what have I lost? I still have the code. Other people can still use my code and modify it as they see fit. Had the other party not used my code we would

Re:

[110010001000]

Wrong. The newest version of GPL is designed to prevent TiVoization. People just don't listen.

Not sure I 100% understand the issue

[Snotnose]

But am I gonna trust a guy I've been following for 30 years, or some lawyer I've never heard of? Let alone the guy I've been following for 30 years has been open and honest about why he does what he does, and the lawyer I've never heard of seems to understand DRM.

In other words.

[bjwest]

claimed Lindberg lobbied OSI directors privately to green-light the license

Lindberg bribed the OSI to do accept the license that's favorable to him and/or his clients. OSI appears to be just another corrupt organization open to taking cash to influence their "decisions" in matters of all sorts. Too bad those of us using free and open source software aren't the ones deciding who on that board making the decisions for that effect us.

Re:

[110010001000]

100% Agree. OSI is not our ("Free Software") friend and it never has been. ESR is not our friend either. They are interested in making money. I am glad OSI is being exposed.

I keep wondering about an AI lawyer.

[OneOfMany07]

Point a software app at the contract and let it answer in plain language what the details of the contract are. Examples of typical situations and their resolutions, etc. I mean even today we are blindly accepting EULAs, and it seems like this could be a good way to put a dent in a high cost field offering a great service to poor people who can't afford a lawyer to read through contracts, or laws, or whatever might have legalese embedded in them.

Re:

[ceoyoyo]

https://yro.slashdot.org/story... [slashdot.org]

I have great respect for Bruce Perens

[Tom Rombouts]

I have no ability to comment on the technical or legal issues here, but I have admired Bruce Perens for years (I think I met him once briefly at some kind of Linux event or maybe DefCon) and if this is what he decided to do I assume he had good reasons for it, and I guess it was his decision to make. TWR

AGPL

[Joerg Sonnenberger]

For me, OSI already went against their core principles when they accepted the AGPL as free license. Ultimately, it is a license that tells you how you are allowed to use the code. That's quite similar to military use clauses that have been contended too. But I guess it must be OK because it comes from the FSF...

Legal gibberish

[Renaissance Slacker]

One of my favorite authors (Greg Bear) in his book Moving Mars, foresees a future in which the legal community develops an artificial language, Legal Logic, with help from AIs. Legal Logic would have rigid syntax and eliminate most ambiguity. Contracts are written in it, and LL is spoken in legal proceeding - which with the participation of AIs are usually brief.

MIT License or Bust.

[Mandrake]

I haven't released software under the GPL since RMS's insane rant at the LinuxWorld GNOME press conference about 20 years ago. Sorry, Bruce, I'm not on your side this time.