I don’t like what the Russian government is doing and Putin is cruel and evil, albeit intelligent (which makes him even more terrible).
That being said, in the US, government agencies can order a company to do certain things, put in certain code, or whatever and then issue a gag order as part of that preventing disclosure. And although there’s a limit to how much that can screw over open-source software users, we do not know what exploits nation-states have, we don’t know what backdoors are in different chipsets or closed-source firmware.
If a developer writing open source code can be blacklisted so easily without transparency into the process, it suggests the company is being ordered to do certain things and not disclose them by the US government, which is a government that still engages in torture.
Notice how they are not coming out and saying “We were not ordered to do this by any government agency.”
Could the foundation be forced to elevate a developer with government ties who then is able to “accidentally” put in an extremely hard to detect exploit into linux that won’t be detected at first and only patched later?
I really wish companies associated with linux were not in a country that lacked transparency with government regulations and in which gag orders were not possible.
Yes, this is exactly my same thoughts.
This is terrifying.
I don’t like what the Russian government is doing and Putin is cruel and evil, albeit intelligent (which makes him even more terrible).
That being said, in the US, government agencies can order a company to do certain things, put in certain code, or whatever and then issue a gag order as part of that preventing disclosure. And although there’s a limit to how much that can screw over open-source software users, we do not know what exploits nation-states have, we don’t know what backdoors are in different chipsets or closed-source firmware.
If a developer writing open source code can be blacklisted so easily without transparency into the process, it suggests the company is being ordered to do certain things and not disclose them by the US government, which is a government that still engages in torture.
Notice how they are not coming out and saying “We were not ordered to do this by any government agency.”
Could the foundation be forced to elevate a developer with government ties who then is able to “accidentally” put in an extremely hard to detect exploit into linux that won’t be detected at first and only patched later?
I really wish companies associated with linux were not in a country that lacked transparency with government regulations and in which gag orders were not possible.