June 2018 - legal - Fedora Mailing-Lists

by Severin Gehwolf

Hi, I'm reviewing OpenJDK and licensecheck pointed me at: http://hg.openjdk.java.net/jdk/jdk/file/cf09f0b56efd/src/jdk.crypto.crypt... to be NTP. Is "NTP" this license? https://opensource.org/licenses/NTP If that's the case, why isn't it listed in the "Good Licenses" list here? https://fedoraproject.org/wiki/Licensing:Main?rd=Licensing#Good_Licenses What's the license of the above file? Thanks, Severin

1 year, 3 months

5
10
0 / 0

Software whose only purpose is to breach web site terms of service

by Florian Weimer

Is it appropriate for Fedora to ship software whose only purpose is to violate terms of service of web sites, such as restrictions like this? “ You agree not to access Content through any technology or means other than the video playback pages of the Service itself, the Embeddable Player, or other explicitly authorized means […] may designate. ” The software is specifically designed to circumvent restrictions the web site operator has put in place to prevent offline viewing of content. Thanks, Florian

1 year, 3 months

4
7
0 / 0

Are we OK with EPL-2.0 ?

by Fernando Nasser

Eclipse has updated their license... so it will come to us soon (if not already in). Fernando

1 year, 3 months

2
1
0 / 0

netperf license: suitable for Fedora?

by Till Hofmann

Hi all, I'm considering to package netperf [1]. The license seems to be a custom HP license, but it is similar to BSD. I've attached the license text, which you can also find in the netperf repository [2]. Is this license suitable for Fedora? If so, what should the license tag be? Thanks for your advice! Kind regards Till [1] https://hewlettpackard.github.io/netperf/ [2] https://github.com/HewlettPackard/netperf/blob/master/COPYING

1 year, 3 months

3
4
0 / 0

CDDL in system library

by Florian Weimer

libxcrypt contains some code from OpenSolaris to implement their password hashing. It's licensed under the CDDL: /* * CDDL HEADER START * * The contents of this file are subject to the terms of the * Common Development and Distribution License, Version 1.0 only * (the "License"). You may not use this file except in compliance * with the License. * * You can obtain a copy of the license at usr/src/OPENSOLARIS.LICENSE * or http://www.opensolaris.org/os/licensing. * See the License for the specific language governing permissions * and limitations under the License. * * When distributing Covered Code, include this CDDL HEADER in each * file and include the License file at usr/src/OPENSOLARIS.LICENSE. * If applicable, add the following below this CDDL HEADER, with the * fields enclosed by brackets "[]" replaced with your own identifying * information: Portions Copyright [yyyy] [name of copyright owner] * * CDDL HEADER END */ /* * Copyright 2003 Sun Microsystems, Inc. All rights reserved. * Use is subject to license terms. */ The rest of the library is a combination of 3-clause BSD, 2-clause BSD (ISC), LGPLv2+, CC0 or a public domain dedication, Applications do not link to this code directly, but they will use it automatically if needed, e.g. if /etc/shadow contains passwords hashed in this way. Is this a problem? I think we could patch libxcrypt to remove support at run-time if necessary, with little practical impact. Thanks, Florian

1 year, 3 months

2
3
0 / 0

2019

2018

2017

2016

2015

2014

2013

2012

2011

2010

2009

2008

2007

legal June 2018