Bonum Certa Men Certa

Attempts to Legislate Against Free Software in Order to Elbow Such Software Aside

Video download link | md5sum a8f9ceff0ad97d546e30338a3c0ce610 Media FUD and Anti-FOSS Bills Creative Commons Attribution-No Derivative Works 4.0



Summary: There's not only a wave of attacks falsely attributing security issues to Free software (the media says "Open Source") but also new legislation in the United States, likely crafted by lobbyists, which discriminates against Free software whilst ignoring the elephant in the room, e.g. government back doors

THE corporate media, which is being fed a set of mindless talking points from corporations that fund it (e.g. by buying advertising space), is spreading a lot of Free software-hostile misinformation. It has been particularly true this month. Not a day goes by without us providing several examples in Daily Links, usually with accompanying editorial remarks/response. Thanks to gross bias and corrupting influence of money, so-called 'journalists' (stenographers) try to convince us the worst thing to security is "Open Source", using terms like "supply chain", which became fashionable (distracting from the real culprit, e.g. "MS SQL [proprietary] servers are getting hacked to deliver ransomware to orgs," as just pointed out in Help Net Security, or never noting that this "supply chain" is controlled by proprietary frameworks, e.g. GitHub or NPM, i.e. Microsoft/NSA).



"Some of these sources (e.g. Recorded Future) are connected to spy agencies and spy on IRC networks."One recent rebuttal to the torrent of FUD comes from a podcast of Josh Bressers. It's entitled "Holding open source to a higher standard", alleging that Free software is scrutinised a lot more harshly than proprietary rivals/counterparts. "Open source has always been held to a higher standard," Bressers says. "It has always surpassed this standard."

Sadly, this is the only link we can recommend that readers follow and read. We put it in Daily Links several days ago.

The annoying part was pointed out to us by an associate, alleging that Microsoft "is still milking the log4j vuln[erability] for political gain," based on shallow blog posts and reports [1, 2, 3]. "The FSF, EFF, and OSI (in their old incarnations) need to be in proactive," the associate said, and "contact with the OMB immediately."

Some of these sources (e.g. Recorded Future) are connected to spy agencies and spy on IRC networks. It's a sinister entity.

"CISA, a Microsoft booster, is involved in this."The above corresponds to S.4913 - Securing Open Source Software Act of 2022, which can be found in congress.gov under the title "Securing Open Source Software Act of 2022". It's formalised "concern trolling" in a suit with a tie. The title is misleading.

CISA, a Microsoft booster, is involved in this. To quote from one of the links above: "The Securing Open Source Software Act — sponsored by Senators Gary Peters (D-Mich.) and Rob Portman (R-Ohio) — would require the Cybersecurity and Infrastructure Security Agency (CISA) to create a “risk framework” around the use of open source code within the government and critical infrastructure agency."



"CISA would need to find ways to “mitigate risks in systems that use open source software” as well as hire experienced open source experts to address issues like Log4j. The bill also requires the Office of Management and Budget (OMB) to publish guidance for agencies about how to use open source software securely."



Based on CISA'a own list of actively-exploited flaws, Microsoft is a vast part of the problem, but S.4913 was "[r]ead twice and referred to the Committee on Homeland Security and Governmental Affairs."

"Notice how they keep mentioning "Log4j"; even about a year later! It had been patched before the public even knew about it."As if the problem is what Microsoft keeps attacking or what's replacing Microsoft.

"The overwhelming majority of computers in the world rely on open source code – freely available code that anyone can contribute to," says this page. But that's its strength, not the weakness, as I explain in the video above. Anyone can fix it, so it gets fixed very fast.

Notice how they keep mentioning "Log4j"; even about a year later! It had been patched before the public even knew about it.

Many publishers intentionally participate in a FUD campaign, e.g. Help Net Security with "Open source projects under attack, with enterprises as the ultimate targets" just a couple of days ago. That's just another wave of anti-Free software FUD; so back doors in proprietary software are OK, but this is... the end of the world? And the sky is falling? This selective attention is a propaganda technique.

Recent Techrights' Posts

Security Advisory: Debian falls for social engineering hacks
Reprinted with permission from Daniel Pocock
The High Cost of Making Scepticism of Proprietary Voting Machines a "Trump" and "Conspiracy Theory" Territory
Time to get back to paper? Or read an old paper?
Today We Got an Early Birthday Gift
Exciting times
[Meme] Going Too Far to the Left Can Breed Militant Ideology
Some people can never be appeased because they prefer not to be appeased
FSF Expressed No Preference Regarding Presidential Candidates (Its Founder Did)
Because he is a principled person, he does not prioritise loyalty to customers or employers (money)
Who Next on the Linux Foundation's 'Kill List'?
Remember that only about 2% of the "Linux" Foundation's budget goes to Linux
 
IRC Proceedings: Thursday, November 07, 2024
IRC logs for Thursday, November 07, 2024
Gemini Links 08/11/2024: US Election, RetroChallenge 2024, and More
Links for the day
[Meme] Questioning Proprietary Software? Not OK...
A disaster long in the making
Links 07/11/2024: HTTP/3, Health Research, and Punditry
Links for the day
Gemini Links 07/11/2024: On Writing Publicly and Record Player Table
Links for the day
Open Source Security Foundation (OpenSSF) Hosted SOSS as Microsoft Propaganda Platform With Microsoft Front Group OSI
They essentially promote what they're attacking under false pretences [...] OSI is deeply corrupt. It's more toxic than arsenic.
Anti-Linux FUD, Now in LLM Form, Thanks to Brittany Day
They attack Linux with chatbots
[Meme] When You Discredit People Who Discredit Secret Code
proprietary systems with hundreds of millions of transistors (and hundreds of millions of lines of code)
Links 07/11/2024: Online Manipulation in Social Control Media, Election Deniers, and More
Links for the day
Gemini Links 07/11/2024: emacs-guix and File Hoarding
Links for the day
[Meme] Election Day at the European Patent Office
Less than 60 minutes left to cast your vote
Staff Union of the European Patent Office (SUEPO) Election Ending Today
In one hour
[Meme] When the Patent Office Does Illegal Things and Staff Speaks Out
many leaks received today
Apple's Debt Has Skyrocketed While Gimmicks Like Vision Pro Failed
In Apple's case, the debt is almost double the "Cash on Hand", which isn't even cash
A President Trump is Excellent News to Microsoft
His racist policies gave lots of contracts to Microsoft
Links 07/11/2024: Facebook Scams, Journalists on Strike
Links for the day
Over at Tux Machines...
GNU/Linux news for the past day
IRC Proceedings: Wednesday, November 06, 2024
IRC logs for Wednesday, November 06, 2024
Microsoft-Connected Publishers Want Us to Think That Linux is Some Sort of a Virus and a "Backdoor"
"The problem is with windows and the attack vector is via Windows"
We've Made it to 18! Here's to Another 18!
Going on for another 18 years means until some time at the end of 2042
Links 07/11/2024: Political Angst and Laptop Issues
Links for the day
Even LKML Subjected to Slop/SPAM by Guardian Digital, Inc (linuxsecurity.com)
They're really awful
Links 06/11/2024: BPF in RFC 9669, More Facebook Fines for Privacy Abuses
Links for the day
Gemini Links 06/11/2024: Political Shock and Hermaic Encouragement
Links for the day
Planet Debian Allows Politics (But It Depends on Your Opinions and Debian's Big Sponsors)
Planet Debian is OK with politics... as long as all your political opinions are the "correct" ones and you add cute animals
What Makes RMS Such an Attractive Target ('Discreditisation' Campaigns)
Don't be so easily fooled
The Biggest OEMs or Vendors of GNU/Linux Stopped Competing With Microsoft (Which Pays Them to Promote Windows, Too)
Where are the competition authorities (or regulators for that matter)?
Let's Encrypt Falls to a New Low of Only 0.6% of Gemini Capsules Known to Lupa
In Gemini Protocol, certificates for encryption are required, but centralised Certificate Authorities (CAs) aren't needed
Computer-Generator Crap Flooding the Web, the Latest Example About "Linux"
Here's today's example
Links 06/11/2024: Election Disinformation and Legal Actions
Links for the day
Gemini Links 06/11/2024: Stargazing and Death on Hallowe'en
Links for the day
Would You Trust a Liar?
Why lie about the authorship?
Mass Layoffs at Mozilla Announced During US Elections
Maybe nobody will notice?
[Meme] Announcing "Results" Before Everyone Even "Played"
There is a "tech" angle to otherwise political news
US Polls Close in One Minute (Social Control Media Does Not Care, Will Not Wait)
US election results will be known in about 2 days
Concentration and Centralisation Versus Aggregation or Syndication
KDE has a history of burying old sites
Social Control Media, Even Hours Before Polls Have Closed
Has social control media controlled by CPC (TikTok) and the Trumpmobile guy (Musk's "X") done enough to convince people not to even vote (based on presumptive "results", presented a long time before all polls have closed)?
Over at Tux Machines...
GNU/Linux news for the past day
IRC Proceedings: Tuesday, November 05, 2024
IRC logs for Tuesday, November 05, 2024
Wayland Pains in Community-Led Distros of GNU/Linux
Few people and companies use Wayland; there's hardly any technical or practical reason to choose it
IBM Still Conflating Microsoft With 'Security'
As a meme
Sanctions Cause Fragmentation in Software
some Chinese Linux developers are already subjected to restrictions similar to Russians'
Web Failing With Slop, Even in 'Linux' Sites (LLM Spam)
Add SEO prompting to the mix and the Web becomes a pool of slop, not knowledge
[Meme] State of the World Wide Web and Online Journalism
Technically a failure (DRM) and cannot even get basic things right
Trump's signature policy, building a wall, copied from Irish-Australian student politician
Reprinted with permission from Daniel Pocock
Linus Torvalds' self-deprecating LKML CoC mail linked to Hitler's first writing: Gemlich letter
Reprinted with permission from Daniel Pocock
[Meme] Turning 18 in One Day
just one more day