Feeds

Google pays for Affero ban

Others to test SaaS license

SANS - Survey on application security programs

Google's ban on projects licensed under the Affero GPL license has claimed its first victim. The ClipperZ online password manager has defected to rival code host SourceForge.

ClipperZ said it was transferring from Google Code to SourceForge because it wanted to use AGPL. The AGPL-licensed Orangemesh open source dashboard server is also in the process of moving.

The projects will join around 10 other AGPL-licensed efforts on SourceForge, compared to six on Google Code. Before the defections, Google had been discouraging other AGPL projects, saying Google Code does not support AGPL.

The dispute between Google and developers who want to use AGPL - a version of GPLv3 tailored for use in software as a service - has rumbled on since last November, when AGPL was finalized.

Google's exact reasons for disallowing AGPL remain unclear.

Last November, Google open source program manager Chris DiBona cited a desire to fight proliferation of licenses, adding AGPL had very little market share and had not been certified by the license arbiter the Open Source Initiative.

These arguments are now irrelevant. AGPL was said to be in use by 42 projects after only a month on the OSI-approved list with its use considered important enough to be tracked by licensing specialist Palamida.

Last month, though, DiBona was back, saying AGPL "needs work or more history by a much greater number of adopters" before he'd consider it usable.

Google is a provider of its own SaaS, with things like Gmail and Google Docs and Spreadsheets. It seems DiBona is waiting to see how other SaaS providers deal with clauses that grant recipients a license to run, modify or propagate your work, and for modifications to come with source code.

Pro-AGPL developers have accused Google of blocking the AGPL license because it closes the so-called "ASP loophole'". This omission in the standard GPL license allows service suppliers, such as Google, to improve on open source code with no obligation to pass improvements back to the open source community.

Whatever its reasons, Google needs to get its house in order. ClipperZ is still listed on Google Code along with several other projects licensed under AGPL including Groups Wiki, shogiserver and the inactive Edozun7

3 Big data security analytics techniques

More from The Register

next story
OpenBSD founder wants to bin buggy OpenSSL library, launches fork
One Heartbleed vuln was too many for Theo de Raadt
Got Windows 8.1 Update yet? Get ready for YET ANOTHER ONE – rumor
Leaker claims big release due this fall as Microsoft herds us into the CLOUD
This time it's 'Personal': new Office 365 sub covers just two devices
Redmond also brings Office into Google's back yard
Ubuntu 14.04 LTS: Great changes, but sssh don't mention the...
Why HELLO Amazon! You weren't here last time
Patch iOS, OS X now: PDFs, JPEGs, URLs, web pages can pwn your kit
Plus: iThings and desktops at risk of NEW SSL attack flaw
Next Windows obsolescence panic is 450 days from … NOW!
The clock is ticking louder for Windows Server 2003 R2 users
Batten down the hatches, Ubuntu 14.04 LTS due in TWO DAYS
Admins dab straining server brows in advance of Trusty Tahr's long-term support landing
Red Hat to ship RHEL 7 release candidate with a taste of container tech
Grab 'near-final' version of next Enterprise Linux next week
Apple inaugurates free OS X beta program for world+dog
Prerelease software now open to anyone, not just developers – as long as you keep quiet
prev story

Whitepapers

Mobile application security study
Download this report to see the alarming realities regarding the sheer number of applications vulnerable to attack, as well as the most common and easily addressable vulnerability errors.
3 Big data security analytics techniques
Applying these Big Data security analytics techniques can help you make your business safer by detecting attacks early, before significant damage is done.
The benefits of software based PBX
Why you should break free from your proprietary PBX and how to leverage your existing server hardware.
Securing web applications made simple and scalable
In this whitepaper learn how automated security testing can provide a simple and scalable way to protect your web applications.
Combat fraud and increase customer satisfaction
Based on their experience using HP ArcSight Enterprise Security Manager for IT security operations, Finansbank moved to HP ArcSight ESM for fraud management.