Legal Support

Discuss usability issues, general maintenance, and general support issues for a grsecurity-enabled system.

Legal Support

Postby jlambrecht » Mon Sep 07, 2015 3:19 pm

Since my mails had not been returned

http://grsecurity.net/announce.php

Is this not a desparate measure ? Instead of suing them companies make a market-opportunity out of it. So you can name them as a grsec-fork / not the real thing.

---- Just in case it would matter to some extent

Thanks so much for the grsecurity patch set, it's been educational for my own limited study project.

In case support for Law related is required, consider

http://cyber.law.harvard.edu/openlaw/

or one of

http://cyber.law.harvard.edu/openlaw/gpl.pdf

http://opensource.com/law/14/7/lawsuit- ... ing-issues
jlambrecht
 
Posts: 45
Joined: Wed Oct 29, 2014 11:45 am

Re: Legal Support

Postby mnalis » Sat Sep 12, 2015 8:29 am

To Brad and PaX team:

Firstly, I understand your frustration with situation. Trying to make a living by doing the right thing (working on free software), only to have freeloaders make a profit from your hard work while you struggle to pay the bills.

I could tell you to try to get free help from entities like Software Freedom Conservancy (https://sfconservancy.org/) or Software Freedom Law Center (https://www.softwarefreedom.org/). But in todays world, even in fastest cases it would take years (more probably near a decade) of even more frustration. And in the end, the best you could realistically hope for is for them to post the tarball (for by then obsolete hardware/software) and/or change the name not to mention your trademark (if they or that product even exist at the time)

What I should better offer are some Zen thoughts: do not try to change things which are beyond your influence, as that can always only bring you pain. Instead treat obstacles like water does - flow around them. Don't lose your nerves because freeloaders use your code without you profiting, look at that as getting free exposure and advertisement, which will help promote your core business, the same way that us small users promote grsecurity to our friends indirectly helps you make money, even if can't afford sponsoring you.

What I'm afraid that this move (giving general public only test patches which in your own words are unfit for production use) will only move grsecurity more into obscurity (as even less people will use it, talk about publicly, or promote it), thus eventually hitting your bottom line even more.

All the while NOT solving the problem at all - in announcement, you said the evil company in question was using old TEST patch, not stable one. So they and other like they will continue their (wrong)doings without any problem, while small people who made you more popular and enabled you to make business of it will be punished and dwindle.

So in conclusion, I beg you to reconsider, and open stable patches to general public.
mnalis
 
Posts: 57
Joined: Fri Sep 29, 2006 11:23 am

Re: Legal Support

Postby jlambrecht » Mon Oct 05, 2015 9:38 am

Since emdedded is a separate sub system it should be possible to provide for kernel patches not supporting embedded, right ?

The silence regarding is staggering. The explanation does not cut any wood.
jlambrecht
 
Posts: 45
Joined: Wed Oct 29, 2014 11:45 am

Re: Legal Support

Postby timbgo » Sun May 29, 2016 1:15 pm

[[ Just to mention, I met jlambrecht as well, at forums.debian.net in some topic on grsecurity ]]

Hi, mnalis!
I have a similar issue like you had, and so I posted in your topic:

Re: php-cgi and nonexisting connections to udp/80 (and udp/0
viewtopic.php?f=3&t=2951&start=15#p16324

and then I was courious about you, and looked up your posts, and found this topic that I'm posting in.

mnalis wrote:To Brad and PaX team:

Firstly, I understand your frustration with situation. Trying to make a living by doing the right thing (working on free software), only to have freeloaders make a profit from your hard work while you struggle to pay the bills.


That is still so sad to me. FOSS Linux has profited so much from what grsecurity/PaX brought it, and all they got from big players in FOSS Linux has been and still is ingratitude and even attempts at denial of their merits.

I had dedicated some limited research (a non-expert afficionado of grsec as I am) and I had come up with what I posted at:

Intel Subsidiary's Violations Made Grsec withdraw Stable?
https://forums.gentoo.org/viewtopic-t-1031476.html

Really sad, as what some of the contributors at (I find the link in that Gentoo post of mine):

Grsecurity stable patches to be limited to sponsors
http://lwn.net/Articles/655721/

where find: "an increased risk of marginalization". And pls. read there the damage to the FOSS community at large, should that partly verify!

I'm not a player in this field really by any means, just a fan.

A fan who is happy to be able to use grsecurity which is the program I respect, and after a steep learning curve am able to use relatively well (and I wish to get so good at it to spread it by teaching it to newbies, that is my dream...).

I can't tell more, I can only wish.

Regards,

Miroslav Rovis
Zagreb, Croatia
http://www.CroatiaFidelis.hr
Try refute: rootkit hooks in kernel,
linux capabilities for intrusion? (Linus?)
timbgo
 
Posts: 295
Joined: Tue Apr 16, 2013 9:34 am


Return to grsecurity support