Language Selection

English French German Italian Portuguese Spanish

Software Freedom Law Center Addresses General Public License

Filed under
News

NEW YORK, March 7, 2006 – The Software Freedom Law Center (SFLC), provider of pro-bono legal services to protect and advance Free and Open Source Software (FOSS), today announced it has published a white paper on its position regarding alleged General Public License (GPL) violations in relation to the Sarbanes-Oxley Act (SOX). The paper, titled “Sarbanes-Oxley and the GPL: No Special Risk,” is available at: http://www.softwarefreedom.org/publications/Sarbanes-Oxley.html.
“Recent discussions regarding the GPL and SOX have been wrought with false information and have prompted the SFLC to issue its position on the topic,” said Eben Moglen, chair of the Software Freedom Law Center. “It is our job at the SFLC to provide the best legal advice and resources to our clients. This paper will help users of the GPL, from developers working on FOSS projects to CIOs working at Fortune 500 companies, to clearly understand there is no new need for concern. The fact remains that no criminal charges on the basis of violating the SOX Act have ever been brought against a GPL user.”
The SFLC paper defines the realistic impact of a GPL violation as it could be applied under SOX. The SFLC paper points out that SOX generally applies only to public companies and that disclosure in a company's SEC reports is not necessary if a company’s use of the license is immaterial to its business. It also states that companies that must comply with SOX bear the full cost of SOX compliance regardless of the licenses of the software they choose. Lastly, the paper explains that if SOX applies to a GPL violation, it is not likely that a company or developer would be criminally liable, since the Act cannot be criminally violated without intentional misconduct.
“The idea that a GPL violation could result in jail time is unreasonable,” said Karen Sandler, attorney at the Software Freedom Law Center. “You take away this unlikely threat, and the argument is reduced only to compliance, and GPL compliance is remarkably simpler than that of alternative licenses.”

About The Software Freedom Law Center
The Software Freedom Law Center – directed by Eben Moglen, one of the world’s leading experts on copyright law as applied to software – provides legal representation and other law-related services to protect and advance Free and Open Source Software. The Law Center is dedicated to assisting nonprofit open source developers and projects. For criteria on eligibility and to apply for assistance, please visit the website at www.softwarefreedom.org.

More in Tux Machines

LMMS Guide Part 1: Creating Simple Melodies Using Sounds And Instruments

​LMMS stands for Linux Multimedia Studio. It is a very good open-source program that is used to create music tracks using sound files, predefined instruments, and sound effects. LMMS has versions for Windows and macOS in addition to Linux. Their website, of course, lists all of their features offered to users. This article will attempt to provide practical guides and tips for composing songs using LMMS. Read
more

How To Create Shell Scripts

Having to type the same command over and over again can be a daunting task and tiresome for that matter. The shell scripts are really easy to create and run saving you from a lot of misery and anguish if you really prefer using the terminal over using the GUI for running tasks. Read
more

Today in Techrights

Security Leftovers

  • Thousands of FedEx customers' private info exposed in legacy server data breach

    Uncovered by Kromtech Security Center, the parent company of MacKeeper Security, the breach exposed data such as passport information, driver's licenses and other high profile security IDs, all of which were hosted on a password-less Amazon S3 storage server.

  • Correlated Cryptojacking

    they include The City University of New York (cuny.edu), Uncle Sam's court information portal (uscourts.gov), Lund University (lu.se), the UK's Student Loans Company (slc.co.uk), privacy watchdog The Information Commissioner's Office (ico.org.uk) and the Financial Ombudsman Service (financial-ombudsman.org.uk), plus a shedload of other .gov.uk and .gov.au sites, UK NHS services, and other organizations across the globe.

    Manchester.gov.uk, NHSinform.scot, agriculture.gov.ie, Croydon.gov.uk, ouh.nhs.uk, legislation.qld.gov.au, the list goes on.

  • Facebook using 2FA cell numbers for spam, replies get posted to the platform

    Replies ending up as comments appears to be a bizarre bug, but the spamming seems intentional.

  • Swedish Police website hacked [sic] to mine cryptocurrency

    Remember now, it is a Police Force that allowed their website to be hijacked by this simple attack vector. The authority assigned to serve and protect. More specifically, the authority that argues that wiretapping is totally safe because the Police is competent in IT security matters, so there’s no risk whatsoever your data will leak or be mishandled.

    This is one of the websites that were trivially hacked [sic].

    It gives pause for thought.

    It also tells you what you already knew: authorities can’t even keep their own dirtiest laundry under wraps, so the notion that they’re capable or even willing to protect your sensitive data is hogwash of the highest order.

  • New EU Privacy Law May Weaken Security

    In a bid to help domain registrars comply with the GDPR regulations, ICANN has floated several proposals, all of which would redact some of the registrant data from WHOIS records. Its mildest proposal would remove the registrant’s name, email, and phone number, while allowing self-certified 3rd parties to request access to said data at the approval of a higher authority — such as the registrar used to register the domain name.

    The most restrictive proposal would remove all registrant data from public WHOIS records, and would require legal due process (such as a subpoena or court order) to reveal any information supplied by the domain registrant.

  • Intel hit with 32 lawsuits over security flaws

    Intel Corp said on Friday shareholders and customers had filed 32 class action lawsuits against the company in connection with recently-disclosed security flaws in its microchips.

  • The Risks of "Responsible Encryption"

    Federal law enforcement officials in the United States have recently renewed their periodic demands for legislation to regulate encryption. While they offer few technical specifics, their general proposal—that vendors must retain the ability to decrypt for law enforcement the devices they manufacture or communications their services transmit—presents intractable problems that would-be regulators must not ignore.

  • Reviewing SSH Mastery 2nd Ed

    It’s finally out ! Michael W Lucas is one of the best authors of technical books out there. I was curious about this new edition. It is not a reference book, but covers the practical aspects of SSH that I wish everybody knew. Rather than aggregating different articles/blogs on SSH, this book covers 90% of the common use cases for SSH that you will ever encounter.