Is Showmypc.com an Open Source Pretender?

shaitand writes "When looking for a remote support application that penetrates firewalls and can be initiated by my clients with a couple of clicks, I came across Showmypc.com. It was a standalone executable but looked like it would work and best of all it was open source. The only thing I didn't like was the interface, so I went to check out the Sourceforge page. I noticed a substantial problem: CVS is empty and the source on the download page is for the 2.6 version. The version of the executable is 3.53. I mailed the developers that they needed to distribute their modified SSH client and VNC source to be in compliance with the GPL license. They said they didn't modify those programs and ignored my request for the current source code. So I ask again, if this is a GPL'ed application; where is the source?"

You missed the obvious joke...

[Anonymous Coward]

"Where's ShowMySource.com?"

Re:You missed the obvious joke...

[Divebus]

Right on their front page [showmypc.com]: "It started as an open source Desktop Sharing and Remote PC access project..."

And then what happened?

Re:You missed the obvious joke...

[ajs]

Right on their front page [showmypc.com]: "It started as an open source Desktop Sharing and Remote PC access project..."

And then what happened?

And if what they claim (that they use, but haven't modified vnc/openssh) then there's no problem here, and no, as per their Web site, it isn't open source.

Slashdot really is scraping the "slow news day barrel" this week.

Re:You missed the obvious joke...

[Mr2cents]

OpenSSH is not GPL but BSD licensed so there is no problem IMO. I haven't checked for VNC (sorry, I'm just too lazy). And besides, GPL is all about distribution, not about modification; if I modify a GPL program and keep it to myself, there is no problem. There is no way you can force me to give up the changes. But if I distribute it, I have to supply the source code with my modifications.

So did the guy receive binaries of GPL-based software? If that's the case, he can demand the source. If not, he just wasted our precious time.

Re:

[devilspgd]

No, we don't. We all benefit when someone actually DOES look at the code and see that there is no hidden funny business.

Since most of the time that just doesn't happen (don't believe me, if you have commit access to a small open source project, add an "impossible" (put it behind a "if 1=2") dialog offering $50 to the first person to email a specific address with a secret word and see how long it takes for anyone to notice.

Don't make it a comment, people read those, but throw it in the middle of a huge bori

Re:

[psykocrime]

Why?

Because the GPL requires it. See http://www.gnu.org/licenses/gpl-faq.html#UnchangedJustBinary [gnu.org] and read the
next 4 or 5 entries.

Providing a legitimate link to source is just as good. Otherwise, they could be in for chewing up valuable bandwidth and transfer charges.

It's not "just as good" to provide a link to a site you don't control or have some sort of agreement in place with. From the GPL FAQ:


The GPL says you must offer access to copy the source code "from the same place"; that is, next to the binarie

Re:

[budgenator]

Bill Gates and wife isn't Microsoft and they aren't the Bill & Melinda Gates Foundation.

Re:

[account_deleted]

Comment removed based on user account deletion

REport em

[Anonymous Coward]

did you report them to SourceForge?

Why not?

[Frosty Piss]

CVS is empty and the source on the download page is for the 2.6 version. The version of the executable is 3.53

If it's original work, can't the copyright holder decide to close the source? If it doesn't contain anyone else's work that happens to be GPLd, I don't see a problem here.

Need more info...

Re:Why not?

[Skreems]

If it's original work, can't the copyright holder decide to close the source? If it doesn't contain anyone else's work that happens to be GPLd, I don't see a problem here.

True. But Sourceforge only provides hosting for OSS projects. If they're hosting their binary downloads for the new version on their own site with their own non-Sourceforge hosting, they're fine.

Re:

[Frosty Piss]

True. But Sourceforge only provides hosting for OSS projects.

Perhaps that's why the current version isn't on Sourceforge?

Re:Why not?

[DustyShadow]

From http://www.gnu.org/licenses/gpl-faq.html#Developer Violate [gnu.org]

"Is the developer of a GPL-covered program bound by the GPL? Could the developer's actions ever be a violation of the GPL?

Strictly speaking, the GPL is a license from the developer for others to use, distribute and change the program. The developer itself is not bound by it, so no matter what the developer does, this is not a "violation" of the GPL.

However, if the developer does something that would violate the GPL if done by someone else, the developer will surely lose moral standing in the community."

Re:Why not?

[Skreems]

That doesn't seem true at all. Plenty of OSS programs out there release a GPL version for non-commercial uses, and a pay version under a proprietary and for-pay licensing scheme. That would definitely violate the GPL if they didn't own the copyrights on the code, but they're not "losing moral standing in the community" just because they found a way to finance their project.

Re:

[sumdumass]

Lets reword that a little.

If the developer makes use of ANY GPL code that the developer doesn't already own the copyright to, they must remain bound by the license.

I knew what you were getting at but it took me a couple seconds to stop second guessing it.

sourceforge requires sources in their conditions.

[leuk_he]

No..

sourceforge REQUIRES [sourceforge.net] you upload the source. This is a sourceforge requirement, and is independent of the gpl.

Just create a support ticket on sourceforge and in some weeks(in my expierience) that project is either closed or the source is put in the file release system.

Re:Why not?

[courtarro]

That would be true if the code were unmodified versions of GPL'd code, but glancing through the two helper EXEs (spcplink.exe and spcwinv.exe) reveals quite a few references that look like they might be directly pulled from VNC or OpenSSH. Interestingly enough, these two helper apps are written in Visual C++, while the main app is written in VB6.

Now that I look closer, I notice that spcwinv.exe is actually referred to as "VNC Server Free Edition for Win32", and the copyright is "Copyright © RealVNC Ltd. 2002-2005", yet the strings within the file have been modified to refer to it as a ShowMyPC product. I'd say that's a dead giveaway.

Re:

[Alaria Phrozen]

Yes, VNC is GPL. Hence the whole issue.

"VNC was originally developed at AT&T. The original VNC source code and many modern derivatives are open source under the GNU General Public License." http://en.wikipedia.org/wiki/VNC [wikipedia.org]

Re:Why not?

[courtarro]

Good point about OpenSSH, but VNC is indeed GPL [wikipedia.org].

Re:Why not?

[Anonymous Coward]

OpenSSH is BSD-licensed. VNC is a protocol. RealVNC is a commercial product of RealVNC Ltd and can be licensed for inclusion in third party products. It is not open source software.

Re:

[shaitand]

'If it's original work, can't the copyright holder decide to close the source? If it doesn't contain anyone else's work that happens to be GPLd, I don't see a problem here.'

If it's an original work then yes but there is still a problem. They are claiming this program is GPL'd and open source. Their site is designed to imply they are an open project in every way possible. If they closed the application a major version and half ago they are not entitled to ride the open source buzz. If I didn't want to person

no source in CVS now

[xonicx]

CVS http://showmypcssh.cvs.sourceforge.net/showmypcssh / [sourceforge.net] is empty.

Use this without source code?

[courtarro]

Whereas GotoMyPC is a serious business with a vested interest in keeping users' machines secure, this site has no such commitments, and as such it seems like a pretty bad idea to use it without being able to check the source code. Potential GPL violations aside, a significant reason that we need the source is to confirm that it does what they say it does. Without it, who knows what backdoors they could be offering; it's especially concerning since it's specifically designed to penetrate firewalls. Beware!

Re:

[Marty200]

Without it, who knows what backdoors they could be offering; it's especially concerning since it's specifically designed to penetrate firewalls. Beware!

The same thing can be said about any piece of software. At some point you have to take the risk that your machine might be exposed.

Re:

[Gazzonyx]

Without it, who knows what backdoors they could be offering; it's especially concerning since it's specifically designed to penetrate firewalls. Beware!

The same thing can be said about any piece of software. At some point you have to take the risk that your machine might be exposed.

Although a good point, with this type of software, you're expecting that you'll be receiving an inbound connection through the firewall; when you 'install' whackAMole.exe, which is a single player game, and find netbus connections in netstat, you know something is up. That, of course, isn't something that ever happened to me in my teens, but rather a story I just made up on the spot, really.

Re:Use this without source code?

[shaitand]

'The same thing can be said about any piece of software. At some point you have to take the risk that your machine might be exposed.'

Or... you could just use open source software.

Re:

[root-a-begger]

GoToMyPC did not start as a closed source product from Citrix. It started as a closed source product from Expertcity. Expertcity was an unknown and yet people found reasons to trust it and the company grew enough that Citrix acquired it.

In short, The parent comments are pure FUD which can be applied to just about any closed source start-up...And this assumes you automatically trust closed-source software from a large company. This also assumes if it were open source that people have reviewed it in enough

It's probably because

[FUD spreader]

this program contains code that they don't want you to see, because they are a shell company for microsoft that is simply using the VNC platform to spy on people so they can report back to the government.

Re:

[wamerocity]

You know I've been on slashdot for a few months now, and it is posts like that make me wish, 1; I had mod points (I've never been given mod points, so I wouldn't even know how to recognize it. Help?) and 2. that there was a "-1 Enough already" mod

Re:It's probably because

[MLease]

You would see a message upon logging in stating that you have 5 mod points, which expire in 3 days from the time you get them. You may not have been around long enough to get mod points yet; if you go here [slashdot.org], you'll get more info on moderation (scroll down the page a bit to get to the moderation parts).

-Mike

Re:It's probably because

[Marcos Eliziario]

I seriously considered modding you down as offtopic just for the fun of it, but it would be anonymous and definitely not fun. But few things could be better as a practical joke than modding down someone discussing slashdot moderation :-)

Re:

[rts008]

MLease is giving you the straight info. The moderating guidelines spell it out pretty well (MLease's link), and will give you a good idea what to do.

You will see in each post (when you have mod points) a window with a drop-down menu with the choices available (-1 Troll; +1, Informative, etc.). It will show up near where you are used to seeing the 'Reply to This' link. If you want to mod that post, select from the window and go on. At the very bottom of the page will be a 'Moderate' button. Just click on tha

Mod points like busses

[whoever57]

You know I've been on slashdot for a few months now, and it is posts like that make me wish, 1; I had mod points (I've never been given mod points, so I wouldn't even know how to recognize it. Help?)

Mod points are like busses. You never have them when you need them, yet, when you don't need them 3 turn up at once. Seriously, the first time I got mod points, I had not used them all, yet I got another batch (I still only had 5 mod points, since there is a limit).

Re:

[WombatDeath]

If you have all that new-fangled Ajaxy stuff enabled (checkbox at top of page) the moderation happens immediately, which is very handy.

Re:

[sumdumass]

Well it is simple then, just load linux onto your calculator and place it next to the keyboard, MS would have a hell of a time monitoring you now.

BTW, check out that connection to akamai your computer makes when starting. It is in the same building as the FBI. You will find it in the firewall logs of the super good internet securities sweet. (I know)

No source needed

[JanneM]

They don't need to give public or cost-free access to the source. All that is required is that they give the source to their customers, for a reasonable copy and distribution fee, if they ask for it.

And as for VNC and friends, well, if they didn't change that code they don't need to give you the source either.

Re:

[Eskarel]

They need to give the source to anyone they distribute to(assuming the program is actually GPL) who asks. If they distribute free to everyone, then anyone who asks for it has to be given the source, that's the whole point of the license.

If they distribute it to their customers only and one of their customers gives it to you, then you can ask the customer for the source and they have to provide it to you.

If they've release a piece of software under the GPL then they have to do this(they can close future

Re:

[JanneM]

They need to give the source to anyone they distribute to(assuming the program is actually GPL) who asks. If they distribute free to everyone, then anyone who asks for it has to be given the source, that's the whole point of the license.

If they distribute it to their customers only and one of their customers gives it to you, then you can ask the customer for the source and they have to provide it to you.

But the OP isn't a customer. He has not been given a binary of the system by anybody. GPL or not, he simply has no right to the source as things stand. He can get the source in one of two ways: he can become a customer by buying a binary, or he can ask one of their existing customers to give or sell him a binary. Only at that point does he actually have a right to get the source code (for a fee if needed) as well.

If they've release a piece of software under the GPL then they have to do this(they can close future versions of the product and stop distributing the gpl'd versions, but as far as I can determine you can't ungpl something you've already distributed as gpl). They also have to do this if any of the software they've modified or linked to is GPL(exceptions for lesser GPL).

Any code that is theirs, they can change the license at will. They can't change the license o

Re:

[shaitand]

'But the OP isn't a customer. He has not been given a binary of the system by anybody. GPL or not, he simply has no right to the source as things stand. He can get the source in one of two ways: he can become a customer by buying a binary, or he can ask one of their existing customers to give or sell him a binary. Only at that point does he actually have a right to get the source code (for a fee if needed) as well.'

They distribute the binaries for free on the website. You can go download one now and be enti

Re:

[42forty-two42]

While this is true, there's no reason for the offer itself to be extended to another third-party, without going through a direct recipient first. Think of it as a call option that can be copied, and doesn't exhaust itself after one use. You need to be in possession of this contract (either by directly receiving it, or receiving a copy from another person) in order to exercise your option to receive the source. IANAL though. Another way to think about it is, as a third party, you don't have the order form u

Re:

[Jeff DeMaagd]

And as for VNC and friends, well, if they didn't change that code they don't need to give you the source either.

The initial question asserts that SSH and VNC had been modified. Whether that's true is really unknown.

Re:

[42forty-two42]

If they didn't modify the source, they must pass on the written offer to provide source code they received, provided they're distributing the binary noncommercially. For commercial uses, or if they don't (or can't) pass on said written offer, then they must provide source code, even if it is unmodified. Of course, they need only provide source to people they give the binary to (including free demos or whatever).

Re:

[evilviper]

All that is required is that they give the source to their customers, for a reasonable copy and distribution fee, if they ask for it.

Anyone who got the binary has the right to request source under the GPL. The binary is freely downloadable on their website, and the submitter says he asked them for the source code, and they refused.

And as for VNC and friends, well, if they didn't change that code they don't need to give you the source either.

Not true. If they didn't change it, they still need to provide th

Re:

[Aim Here]

Wrong. Reread section 2b of version 2 of the GPL. Section 2c doesn't apply because this is a commercial enterprise, and section 2b obliges you to offer source code to 'any third party' for up to three years.

Re:

[vondo]

And as for VNC and friends, well, if they didn't change that code they don't need to give you the source either.

Simply not true. If you distribute GPL'd code, you have to distribute the source (in a manner prescribed by the GPL). Whether you modified it or not does not matter one bit and if you offer your product for download, you have to host the source on your own servers. A link to the source code at some other location is NOT good enough.

There have been smaller linux distributions that get burned over this, but it is the rule under the license.

They may be fully compliant...

[BobandMax]

...because the GPL only requires that an offer of source code be distributed along with the application. Have you purchased a copy of their commercial offering?

Please read the following from gnu.org's FAQ:

QUOTE

If I distribute GPL'd software for a fee, am I required to also make it available to the public without a charge?

No. However, if someone pays your fee and gets a copy, the GPL gives them the freedom to release it to the public, with or without a fee. For example, someone could pay your fee, and then put her copy on a web site for the general public.

UNQUOTE

Re:They may be fully compliant...

[QuantumG]

Ya know. In the GPLv3 [gnu.org] that's no longer the case:

You may convey a covered work in object code form under the terms of sections 4 and 5, provided that you also convey the machine-readable Corresponding Source under the terms of this License, in one of these ways:
  a) Convey the object code in, or embodied in, a physical product (including a physical distribution medium), accompanied by the Corresponding Source fixed on a durable physical medium customarily used for software interchange.
  b) Convey the object code in, or embodied in, a physical product (including a physical distribution medium), accompanied by a written offer, valid for at least three years and valid for as long as you offer spare parts or customer support for that product model, to give anyone who possesses the object code either (1) a copy of the Corresponding Source for all the software in the product that is covered by this License, on a durable physical medium customarily used for software interchange, for a price no more than your reasonable cost of physically performing this conveying of source, or (2) access to copy the Corresponding Source from a network server at no charge.

Which got me thinking.. maybe that was the intent in the first place.. If you go read the relevant section of the GPLv2 [gnu.org]:

You may copy and distribute the Program (or a work based on it, under Section 2) in object code or executable form under the terms of Sections 1 and 2 above provided that you also do one of the following:
  a) Accompany it with the complete corresponding machine-readable source code, which must be distributed under the terms of Sections 1 and 2 above on a medium customarily used for software interchange; or,
  b) Accompany it with a written offer, valid for at least three years, to give any third party, for a charge no more than your cost of physically performing source distribution, a complete machine-readable copy of the corresponding source code, to be distributed under the terms of Sections 1 and 2 above on a medium customarily used for software interchange; or,

See that "medium customarily used for software interchange" bit? I'm pretty sure that a court would interpret that as "send me a CD-ROM please", not "you can get it from this URL".

Of course, that means any distribution of object code, even with corresponding source code, that wasn't on physical medium would have been against the GPL.. and I doubt that was the intent.

BTW, under the GPLv3 the appropriate clause for network distribution of object code forms is:

d) Convey the object code by offering access from a designated place (gratis or for a charge), and offer equivalent access to the Corresponding Source in the same way through the same place at no further charge. You need not require recipients to copy the Corresponding Source along with the object code. If the place to copy the object code is a network server, the Corresponding Source may be on a different server (operated by you or a third party) that supports equivalent copying facilities, provided you maintain clear directions next to the object code saying where to find the Corresponding Source. Regardless of what server hosts the Corresponding Source, you remain obligated to ensure that it is available for as long as needed to satisfy these requirements.

Or the peer-to-peer option of (e).

Which is one of the many reasons why the GPLv3 is so necessary. Things that were "adequate" in GPLv2 are just not today, as technology keeps moving forward.

Re:

[Aim Here]

And how does that not conflict with section 6 of the GPL?

The section that says:
"You may not impose any further restrictions on the recipients' exercise of the rights granted herein."

Demanding a 'voluntary' waiver of the source code right prior to distributing code to someone is almost certainly going to be considered a legal restriction on that code, semantic differences aside (unless your judge happens to have shoved a hatpin through his frontal lobes that day).

In any case, a commercial enterprise would ha

Re:

[sumdumass]

In any case, a commercial enterprise would have to rely on section 2b of the GPL as far as the distribution is concerned, which forces them to offer source code for at least three years to "any third party". So even if a lobotomised judge does let this pass and your intended victim has 'voluntarily' waived his right to source code, you still have to offer source to downstream users.

No, you would only have to offer the source code to those who you have distributed to. The downstream users wouldn't have an

Re:

[Aim Here]

"No, you would only have to offer the source code to those who you have distributed to. The downstream users wouldn't have any rights to an upstream providers source outside them letting it go. If they refused to allow downstream customers access, the GPL is fine with it."

I dunno about you, but I have multiple copies of the GPL on my hard drive, and it's all over the net. Maybe you should read it before opening your mouth. I'd make a sarcastic comment on how I actually cited the actual passage, but I cite

Guess they are just lying then...

[digital photo]

Well, they claim their software started out as open source(read: probably derived from open source projects like vnc/ssh/etc). Their sourceforge page indicates that the code is under GPL license, which implies that the source code should be made available to individuals wanting to use it for their own use.

However,other than the front page and the sourceforge page, there is nothing else on their site indicating that the application is in anyway open source in spirit, letter, or intent.

Of course, you can always just ask them if they are indeed still Open Source, or if they were, but have since reneg'd on their license agreement to be Open Source. I forget... do you need to make your code open source/GPL if your code essentially links to libraries of GPL/Open Source projects? Or perhaps if your product is derived from Open Source application source code?

If they are making use of code from another Open Source project and are burying it in their binary-only distros, might be worthwhile to check their code for library strings and see whose projects' rights are being tread upon and ask why they haven't upheld their GPL/OS obligations.

That's, IF they are using/leveraging/linking...

Re:

[tgatliff]

Well the thing I like best about this appearing on slashdot is that now someone will fork the code and get it opensource again. At least that is the hope...

Re:

[Antique Geekmeister]

It certainly happened to SSH years ago, long before slashdot. Heck, it's how the gcc and the the GPL and the FSF started.

Who are you?

[QuantumG]

I mailed the developers that they needed to distribute their modified SSH client and VNC source to be in compliance with the GPL license.

Uhhh, dude, you're not the copyright holder, who have no right to say what they "need" to do. Find the copyright holder, tell them, if they want to do something about it, they will. Otherwise, suck it up.

Re:

[rm999]

Very true - just because something is GPL'd doesn't mean that everyone "owns" the software. It is still copyrighted by someone, and it is up to that person/group to make sure any derived works are still free and open.

You can ask for the source, but you cannot bring them to court.

Re:

[glwtta]

You can ask for the source, but you cannot bring them to court.

Hmm, looks to me like he asked them for the source and did not bring them to court. What's the problem?

Re:

[QuantumG]

Looks to me like he demanded the source.

Re:

[shaitand]

'Looks to me like he demanded the source.'

Per the terms of the license agreement if a binary has been distributed to me under the GPL, I have a RIGHT to the source. Of course I demanded it. They are responsible for honoring those terms. If they fail to honor them and I can show damages then I can sue them, just not for copyright infringment.

Even if they were the original author and gave me the software gratis, if they offered say... support and failing to provide that support caused damages to me I could su

Re:

[QuantumG]

Not only are you wrong, you're also on crack.

I tell ya what, you go find yourself in that situation and *try* to sue them and see how far you get.

Even if they provide you with that "written offer" to provide source code under section 3(b) of the GPL version 2 and then subsequently refuse to give you the source code when you ask for it, you still can't sue them for breach of contract because you've made no consideration.

All that you can do is get the copyright holder to sue them for copyright violation becau

Re:

[redhog]

He could in that case very well sue them for false advertisement (that the code is GPL when it is not). In addition, the copyright holder could sue them for copyright infringement.

Why doesn't the GPL contain a clause that allows others than the copuright holder to sue for violations? That would have been awesome! Think about the suefest!

Re:

[QuantumG]

Cause no matter how much the FSF might like to, they can't change the law, and the law says that only the copyright holder can sue for copyright infringement (strangely enough).

Re:

[rm999]

Simple. The only way he's getting the source if they don't want to give it up is through court. He cannot bring them to court. Therefore, he is not getting the source.

In other words, he is demanding something when he does not have the right to do so. I can ask you for a million dollars, but you probably won't give it to me.

Re:

[shaitand]

'In other words, he is demanding something when he does not have the right to do so.'

Nonsense, everyone who they distribute a binary to has the right to demand the source. They just don't any teeth to back up the demands.

Re:

[Antique Geekmeister]

A polite heads-up with a pointer to the actual copyrights can be handy. Saying "I'd be interested in the use of it for this particular project, but not having access to the [GPL/BSD/Apache/whatever] licensed source precludes me from doing so, because it's hard to know what other copyrights you might be violating if you're being this obviously careless" might also help.

/. isn't where you report this

[UbuntuDupe]

I'm *pretty* sure there's an established procedure for reporting GPL violations, and I'm *pretty* sure submitting a /. story griping about your experience with that software ain't it.

Re:

[PygmySurfer]

I dunno, wasn't there another story a week or so ago about a GPL violation?

Oh, it was actually about GPL violations in windows apps going unnoticed [slashdot.org], and mentioned several violations.

Re:

[QuantumG]

http://www.gnu.org/licenses/gpl-violation.html [gnu.org]

There ya go.

Re:/. isn't where you report this

[shaitand]

Thank you I actually wasn't aware of that. Whether they are technically violating the license is beside the point, they are distributing what they claim is an open source GPL'd application and not providing the source. Companies falsely claiming to be participating in order to gain the good will of the community should be exposed to that community. Slashdot is a rather convenient outlet to get through to a rather big chunk of it.

Why is this front page news?

[Retalin]

This is flame bait... this is not news and it's definately not the proper way to report a GPL violation. Are we really hurting for news submissions?

Re:Why is this front page news?

[Quiet_Desperation]

It was this or the announcement of Barbie Horse Adventures 2: The Gates Of Slaughter. Take your pick.

Re:

[Gazzonyx]

It was this or the announcement of Barbie Horse Adventures 2: The Gates Of Slaughter. Take your pick.

I didn't even know they released that yet! I would have if we hadn't been wasting time discussing the GPL. I hate the firehose, nothing good ever gets picked up.

A similar problem...a different solution.

[rindeee]

I had a similar need some time ago but didn't like the solutions out there. I ended up setting up an OpenVPN server (listening on 443 to ease outbound firewall penetration). When the user needed help, they connected to my VPN server, I connected to it (if I was not in the office) and then did as I pleased (RDP, SSH, what have you). In this manner, I had a guarantee of security (which I was able to control) and ease of use on the customer's part (all they had to do was fire up an OpenVPN connection). The

GPL doesn't require releasing the source

[n2rjt]

Somebody can write a program, release it under GPL, and not release the source.
That's perfectly valid.
The GPL, or any other license, doesn't apply to the copyright holder.
I've always wanted to do that, just to get a rise out of the community.

Of course, if they included GPL software, making this a derivative work, disregard me.

Re:

[vga_init]

Unfortunately for you, that's not the case. The GPL specifies that the source code must be distributed along with the binary or must be made publicly available otherwise. Having access to the source code is one of the four essential software freedoms that the GPL was designed to ensure.

Re:

[pclminion]

Unfortunately for you, that's not the case. The GPL specifies that the source code must be distributed along with the binary or must be made publicly available otherwise.

And if it isn't? I suppose somebody would sue the guy. Why, THAT'S IT! He's gonna sue HIMSELF!

Thanks, you've brought me much enlightenment. On your particular level of stupidity, that is.

Re:

[vga_init]

It seems to be that by giving someone the license, even the copyright holder has entered a legal agreement, at least to the person who is holding that license. Perhaps the law doesn't support suing the copyright holder for this reason, but it's immoral at the very least.

UltraVNC + tightvnc

[bluefrogcs]

Create a distributable exe via http://www.uvnc.com/addons/singleclick.html [uvnc.com] You can set it for connection ports, etc .. all you need after that is any vnc that is running in listener mode. client runs the exe that was created, connects to the listener machine and displays the remote desk. Client closes exe at teh end of the session and session is teminated and can't be reinitiated from the listener end. Goes through firewalls, routers, etc .. Total cost = 0 .. No additional login info needed .. I used to ha

The main page has been updated...

[shaitand]

They removed the link to the sourceforge page.

UltraVNC

[jon287]

UltraVNC and UltraVNC "single click" can do just what you want, is greatly customizable, and completely free.

Re:Uuuuu...

[mini me]

If I use a GPL software and modify it, "I'm not obligated" to release my modifications.

You are if you distribute a binary version with your modifications.

Re:

[Minwee]

If you're just going to keep bringing facts into this argument then nobody is going to have any fun.

Re:

[Marcos Eliziario]

If I fscking release my fscking work under a GPL license, what in hell gave you the idea that it's fair if you take my code, modify it, and then start selling my fscking code with your fscking code modifications without contributing your changes back to the community.
If you don't want to release your code, the remedy is simple: Don't base your fscking stinking work upon someone else's GPL'd work, start it from scratch, then, if you start it from scratch, you can keep it closed as much as you want.
(And given

Re:

[Rakishi]

No, that's NOT how the GPL works. It says simply that if you give someone a binary then you must also give them the source code (if they request it I think). You can modify the code as much as you want and you have NO requirement to release it to anyone UNLESS you already released a binary of it to them. Of course they can in turn give the source code and binary to whomever they wish to.

Yes there is a difference. Some licenses REQUIRE you to release ALL/ANY modifications (even if they are for personal use)

Re:

[jon787]

And all 3 are anonymous CVS read operations. Not a single checkin is reported.

Re:Off-topic, but...

[m2943]

Ah, another piece of commercial, proprietary software derived from VNC.

https://www.copilot.com/press/faq/ [copilot.com]

Here's a serious question: has Fog Creek ever given anything back to the open source community?

Re:

[Anonymous Coward]

Ah, another piece of commercial, proprietary software derived from VNC.

...And from the unpaid, or underpaid, work of interns acquired through spamming. From the FAQ:

How long did Fog Creek Copilot take to write?
The three programming interns wrote the beta version of Fog Creek Copilot in under two months.

[...]

How were the four interns selected for this project?
Internship postings were made to the Fog Creek software website, www.FogCreek.com as well as to CEO Joel Spolsky's blog, www.JoelonSoftware.com. Fog

Re:Off-topic, but...

[NickFitz]

And from the unpaid, or underpaid, work of interns

Yes, all they got was: [fogcreek.com]

• Weekly stipend of $750
• Free housing in an area dorm (usually with private rooms)
• Free gym membership
• Free MetroCard (gets you on any bus or subway in New York)
• Free soft drinks
• Free lunches
• Free weekly social events. 2005 events included attending a Yankees game, a boat trip around Manhattan, walking tours, museum trips, two Broadway shows, a movie opening, and parties.

Doesn't seem that shabby...

Re:

[orclevegam]

I actually bought the DVD that was created to document the experience the interns had while working on that project. They all seemed very happy to be there, and honestly it was a very nice work environment, particularly compared to some places. Could have been worse, they could have signed on at one of EA's sweatshops. As an added bonus, most Universities require some sort of internship in order to receive your degree, and the sort of work experience they acquired working for Joel not only looks good on a r

Re:Off-topic, but...

[vico]

Ah, another piece of commercial, proprietary software derived from VNC.

And this is wrong how, seeing as they provide the source?

Here's a serious question: has Fog Creek ever given anything back to the open source community?

The source [copilot.com] isn't enough for you?

Re:

[Anonymous Coward]

Don't you dare complain about doing the minimum. If you want more than that, write your own license and start to use it instead of the GPL.

Re:

[Pollardito]

so what you're saying is that if he wants people to do more than the minimum, why doesn't he just make the minimum 37 pieces of flair?

Re:Off-topic, but...

[Jugalator]

Ah, another piece of commercial, proprietary software derived from VNC.

Commercial. Proprietary. Yes, the magic words that get some people's blood to boil. You wield them well.

Here's a serious question: has Fog Creek ever given anything back to the open source community?

My question would be why you care? In case their VNC core comes from licensed software allowing a commercial derivate as a binary, there is no problem. I believe AT&T's core was GPL'ed so that would raise some questions, but it's possible that by "VNC core" they mean some VNC-compatible derivate with a compatible license. In that case, the devs of that core also specifically intended use of it like this, being more open than just for OSS devs to use. Yes, there is a "more open" than that. And those developers don't have an issue with this, and maybe just you not wanting to see a 100% free use of their code. And if it doesn't follow the license, there's a breach of license, and then that would indeed be bad.

But this is clearly an issue of whether licenses are followed, not about a company doing "good" or "bad". If they follow the license of the developers -- that is using the software like they specifically intended others to use it -- they are per definition doing good. At least unless if you disagree with how their VNC core devs chose their license.

If there's something I get annoyed about, it's not about companies properly using licenses, but people like you who try to impose a personal code of ethics on companies who only use the code the way the original devs intended it to.

Re:

[m2943]

My question would be why you care?

Because I support companies that support free software, and choose not to do business with companies that don't.

But this is clearly an issue of whether licenses are followed, not about a company doing "good" or "bad".

That's not the issue I was asking about.

If there's something I get annoyed about, it's not about companies properly using licenses, but people like you who try to impose a personal code of ethics on companies who only use the code the way the original devs inte

Re:

[shaitand]

'But this is clearly an issue of whether licenses are followed, not about a company doing "good" or "bad".'

I don't recall claiming they were violating the license when I posted the story. I asked if they were an open source pretender. This company is implying they are an open source application and trying to claim fanfare because of it. This is not open source and they are entitled to no fanfare, just the opposite.

Re:

[shaitand]

'That seems awfully like you are claiming a violation of the license.'

Actually its UltraVNC and RealVNC both, and the versions they used are GPL'd. So yes, I told THE DEVELOPERS they were violating the license. I told SLASHDOT they were failing to provide source for their own so-called GPL'd application.

'I would love to know why you think open source means GPL.'

The GPL is an open source license and the one they are claiming their program is licensed under.

Add crossloop to that list

[Joce640k]

At least they don't charge for it, yet.

Re:

[wizbit]

You're trolling, but the same could be said of Torvalds' voluminous e-mail flamewars, and nobody's ever accused him of "never [giving] anything back". Real work still gets accomplished. The fact that Spolsky takes the time to share his experience shouldn't be viewed as an indictment of his (or his company's) productivity.

Re:

[Anonymous Coward]

Kiddo, you're at the wrong website! This is the one you wanted. [everythinggirl.com] Make sure your speakers are turned on and up, or you'll miss the best stuff!

Re:

[Datamonstar]

Gee, thanks. Now I have lead poisoning.

Re:

[UncleTogie]

I sure wouldnt run anything from them. But i'm paranoid like that.

I'm like that with ANYone who can't figure which country they're in... So, is it the US or is it Canada?