Bonum Certa Men Certa

Attempts to Legislate Against Free Software in Order to Elbow Such Software Aside

Video download link | md5sum a8f9ceff0ad97d546e30338a3c0ce610 Media FUD and Anti-FOSS Bills Creative Commons Attribution-No Derivative Works 4.0

Summary: There's not only a wave of attacks falsely attributing security issues to Free software (the media says "Open Source") but also new legislation in the United States, likely crafted by lobbyists, which discriminates against Free software whilst ignoring the elephant in the room, e.g. government back doors

THE corporate media, which is being fed a set of mindless talking points from corporations that fund it (e.g. by buying advertising space), is spreading a lot of Free software-hostile misinformation. It has been particularly true this month. Not a day goes by without us providing several examples in Daily Links, usually with accompanying editorial remarks/response. Thanks to gross bias and corrupting influence of money, so-called 'journalists' (stenographers) try to convince us the worst thing to security is "Open Source", using terms like "supply chain", which became fashionable (distracting from the real culprit, e.g. "MS SQL [proprietary] servers are getting hacked to deliver ransomware to orgs," as just pointed out in Help Net Security, or never noting that this "supply chain" is controlled by proprietary frameworks, e.g. GitHub or NPM, i.e. Microsoft/NSA).

"Some of these sources (e.g. Recorded Future) are connected to spy agencies and spy on IRC networks."One recent rebuttal to the torrent of FUD comes from a podcast of Josh Bressers. It's entitled "Holding open source to a higher standard", alleging that Free software is scrutinised a lot more harshly than proprietary rivals/counterparts. "Open source has always been held to a higher standard," Bressers says. "It has always surpassed this standard."

Sadly, this is the only link we can recommend that readers follow and read. We put it in Daily Links several days ago.

The annoying part was pointed out to us by an associate, alleging that Microsoft "is still milking the log4j vuln[erability] for political gain," based on shallow blog posts and reports [1, 2, 3]. "The FSF, EFF, and OSI (in their old incarnations) need to be in proactive," the associate said, and "contact with the OMB immediately."

Some of these sources (e.g. Recorded Future) are connected to spy agencies and spy on IRC networks. It's a sinister entity.

"CISA, a Microsoft booster, is involved in this."The above corresponds to S.4913 - Securing Open Source Software Act of 2022, which can be found in under the title "Securing Open Source Software Act of 2022". It's formalised "concern trolling" in a suit with a tie. The title is misleading.

CISA, a Microsoft booster, is involved in this. To quote from one of the links above: "The Securing Open Source Software Act — sponsored by Senators Gary Peters (D-Mich.) and Rob Portman (R-Ohio) — would require the Cybersecurity and Infrastructure Security Agency (CISA) to create a “risk framework” around the use of open source code within the government and critical infrastructure agency."

"CISA would need to find ways to “mitigate risks in systems that use open source software” as well as hire experienced open source experts to address issues like Log4j. The bill also requires the Office of Management and Budget (OMB) to publish guidance for agencies about how to use open source software securely."

Based on CISA'a own list of actively-exploited flaws, Microsoft is a vast part of the problem, but S.4913 was "[r]ead twice and referred to the Committee on Homeland Security and Governmental Affairs."

"Notice how they keep mentioning "Log4j"; even about a year later! It had been patched before the public even knew about it."As if the problem is what Microsoft keeps attacking or what's replacing Microsoft.

"The overwhelming majority of computers in the world rely on open source code – freely available code that anyone can contribute to," says this page. But that's its strength, not the weakness, as I explain in the video above. Anyone can fix it, so it gets fixed very fast.

Notice how they keep mentioning "Log4j"; even about a year later! It had been patched before the public even knew about it.

Many publishers intentionally participate in a FUD campaign, e.g. Help Net Security with "Open source projects under attack, with enterprises as the ultimate targets" just a couple of days ago. That's just another wave of anti-Free software FUD; so back doors in proprietary software are OK, but this is... the end of the world? And the sky is falling? This selective attention is a propaganda technique.

Recent Techrights' Posts

Attacks on the EPC: Reality and Fiction
EPO leaks
When the Cancer 'Metastasises'
We had a red flag
March in Techrights (EPO Litigation and More)
One theme we'll explore a lot when it comes to GNU/Linux is the extent to which communities truly serve communities
Don't Forget to Also Follow Tux Machines
We've split the material
Yandex Usage Has Surged Since the Invasion of Ukraine, Microsoft Fell to 0.7% (It Was 1.7% Before the 'Bing Chat' Hype Campaign)
In Soviet Russia, Bing searches user
Over at Tux Machines...
GNU/Linux news for the past day
IRC Proceedings: Friday, March 01, 2024
IRC logs for Friday, March 01, 2024
Sellout Completed: Linux Foundation Converging With the Gates Foundation
not a joke
Hitler Rants Parodies on Steve Ballmer
Parody created using clips from Downfall (Der Untergang)
With Windows This Low (27% of the "OS" Market), Steve Ballmer Would Have Thrown Another Chair
The media produced many puff pieces about Nadella at 10 (as CEO), but what has he done for Windows? Nothing.
[Meme] The Naked President
EPO Suffers From Shrinkage
Understanding Cardinal George Pell prosecution, Institutional abuse & Debian cybertorture
Reprinted with permission from Daniel Pocock
Links 01/03/2024: Many More Layoffs, "Funerals" for Software Patents in the US
Links for the day
Gemini Links 01/03/2024: OFFLFIRSOCH 2024 and Dark Streets Tech Demo
Links for the day
Links 01/03/2024: Navalny Funeral and Media Under Attack
Links for the day
Gemini Links 01/03/2024: Making Art and the Concept of Work Management
Links for the day
Schriftleitergesetz: Hiding the Holocaust with censorship
Reprinted with permission from Daniel Pocock
[Meme] His Lips Moved
Here is your national "news" for today
statCounter: GNU/Linux Exceeded 6% in Asia Last Month (Compared to 4% Just 12 Months Earlier)
numbers may be biased
What the End of Journalism Looks Like
All on the same day
Links 01/03/2024: Microsoft 'Retiring' More Services and Raspberry Pi Celebrates 3rd Birthday (Launched on February 29th, 2012)
Links for the day
Women's Empowerment
Sponsored by Bill Gates
Gemini Links 01/03/2024: Speed Bumps and Analog Stuff
Links for the day
[Meme] Those Greedy EPO Examiners
Says the litigation industry, charging 300 euros an hour per attorney
EPO Discriminates Against Families of Its Own Workers, the Union Explains Legal Basis Upon Which It's Likely Illegal and Must be Challenged
To the Council, the EPO boasts about its wealth (seeking to impress by how much breaking the law "pays off")
Over at Tux Machines...
GNU/Linux news for the past day
IRC Proceedings: Thursday, February 29, 2024
IRC logs for Thursday, February 29, 2024
Links 01/03/2024: Misuse of Surveillance Against UK-Based Journalism, EPO Conflict Now in the Media
Links for the day
Taking a Break From Paid Promotion of the Illegal, Unconstitutional Kangaroo Court for Patents (UPC)
JUVE returns to its 'roots'?
FSFE admits losing funds from bequest by insulting and ignoring Fellowship representative
Reprinted with permission from Daniel Pocock
Gemini Links 29/02/2024: Raspberry Pi Incus Cluster and Aya 0.5.0 Coming Soon
Links for the day
Links 29/02/2024: Layoffs at Apple, Expedia, and Electronic Arts
Links for the day
Gemini Links 29/02/2024: Web Enshittification and Firefox user-agents
Links for the day
Spiked Piece/Censoreed Piece: 'Microsoft Copilot is a gimmick', says top CIO
Issues relate to connectivity and cost
Enrico Zini, Mattia Rizzolo, Plagiarism & Debian
Reprinted with permission from Daniel Pocock
[Meme] Clergy of GNU/Linux (Corporations Like IBM)
Volunteers as powerless "followers" of companies that "harvest" their labour
There Will Be Lots More Apple Layoffs (Already Years in the Making)
The corporate media still tries to shape the narrative to prevent panic or delay market hysteria
Latest SUEPO (Staff Union of EPO) Report For The Hague Reveals EPO Does Not Obey Court Orders, Refuses to Allow Workers to Freely Talk to One Another
working in a place where communication itself is restricted
[Meme] The Oppression Will Continue Until EPO 'Quality' Improves
wonder why EPO morale is so low?
Over at Tux Machines...
GNU/Linux news for the past day
IRC Proceedings: Wednesday, February 28, 2024
IRC logs for Wednesday, February 28, 2024
Outreachy, GSoC-mentors & Debian-Private may soon become public records in federal court
Reprinted with permission from Daniel Pocock