Sam Hartman (hartmans) wrote,
Sam Hartman

Affirmative Assent Considered Harmful

There has been a desire in some open-source licenses to provide something called affirmative assent. The basic idea is that you want the user to agree to the license in some way. I think the goal is to make sure that you have a contract, not just a non-exclusive copyright license. This has been somewhat politically heated with the open-source community. Debian claims it is horrible and the OSI seems OK with some forms of affirmative assent and has approved licenses like the OSL that contain such provisions. A lot of the time it feels like debian-legal is filled with a bunch of radicals who lose sight of the fact that we attempt to secure open-source freedoms in the interests of our users and to guarantee our future ability to do software development. At some level I thought the affirmative assent dispute was one of those disputes where really if you to a moderate viewpoint the OSI had probably come to the right conclusion.

Windows taught me that Debian was in this instance 100% correct. I noticed that even though my computer was configured to take updates automatically, the system tray icon indicating updates were available to install had been around for a few days. I clicked on it only to find that critical updates were waiting for me to assent to their license before they installed. Um, no, just not OK. I never want to have to go around to all the managed computers in an organization and agree to a bunch of licenses just to avoid security problems. Anything that gets in the way of automatic upgrades for the sake of licensing is not acceptable.

The obvious next stand is to argue that the software should wait for assent when it is run not when it is installed. Unfortunately that just doesn't work for libraries. I'm picturing a situation where your display manager attempts to open an X connection so it can present the login window only to be told that X will not be available until the user assents to the latest license in the font rendering engine.


Recent Posts from This Journal

  • Making our Community Safe: the FSF and rms

    I felt disgust and horror when I learned yesterday that rms had returned to the FSF board. When rms resigned back in September of 2019, I was Debian…

  • Good Job Debian: Compatibility back to 1999

    So, I needed a container of Debian Slink (2.1), released back in 1999. I expected this was going to be a long and involved process. Things didn't…

  • Forged Email

    Last night, a series of forged emails was sent to a number of places around the Debian, Ubuntu and Free Software communities. The meat of the mail…

  • Post a new comment


    default userpic

    Your reply will be screened

    Your IP address will be recorded 

    When you submit the form an invisible reCAPTCHA check will be performed.
    You must follow the Privacy Policy and Google Terms of use.