From mboxrd@z Thu Jan 1 00:00:00 1970 Return-Path: Received: from lists.gentoo.org (pigeon.gentoo.org [208.92.234.80]) (using TLSv1.2 with cipher ECDHE-RSA-AES256-GCM-SHA384 (256/256 bits)) (No client certificate requested) by finch.gentoo.org (Postfix) with ESMTPS id 29377139085 for ; Thu, 5 Jan 2017 22:14:58 +0000 (UTC) Received: from pigeon.gentoo.org (localhost [127.0.0.1]) by pigeon.gentoo.org (Postfix) with SMTP id 8080421C038; Thu, 5 Jan 2017 22:14:57 +0000 (UTC) Received: from mail2.obsidian-studios.com (mail2.obsidian-studios.com [45.79.71.79]) (using TLSv1.2 with cipher ECDHE-RSA-AES256-GCM-SHA384 (256/256 bits)) (No client certificate requested) by pigeon.gentoo.org (Postfix) with ESMTPS id 2E3F521C028 for ; Thu, 5 Jan 2017 22:14:56 +0000 (UTC) Received: (qmail 1990 invoked from network); 5 Jan 2017 22:14:56 -0000 Received: from unknown (HELO assp2.obsidian-studios.com) (wlt@::ffff:127.0.0.1) by ::ffff:127.0.0.1 with ESMTPA; 5 Jan 2017 22:14:56 -0000 X-Assp-Version: 2.5.3(16294) on assp2.obsidian-studios.com X-Assp-ID: assp2.obsidian-studios.com m1-54495-17690 X-Assp-Session: 37818023470 (mail 1) X-Assp-Envelope-From: wlt-ml@o-sinc.com X-Assp-Intended-For: gentoo-project@lists.gentoo.org X-Assp-Server-TLS: yes Received: from unknown ([fdbe:bad:a55:0:1::211] helo=wlt.localnet) by assp2.obsidian-studios.com with SMTPSA(TLSv1_2 ECDHE-RSA-AES128-GCM-SHA256) (2.5.3); 5 Jan 2017 14:14:55 -0800 From: "William L. Thomson Jr." To: gentoo-project@lists.gentoo.org Subject: Re: [gentoo-project] Merging Trustees and Council / Developers and Foundation Date: Thu, 05 Jan 2017 17:14:51 -0500 Message-ID: Organization: Obsidian-Studios, Inc. User-Agent: KMail/5.3.3 (Linux/4.7.5-gentoo; KDE/5.28.0; x86_64; ; ) In-Reply-To: <20170105225649.17fc8f79.mgorny@gentoo.org> References: <57d3af79-4212-b8b9-40df-6120b1445c8b@gentoo.org> <20170105225649.17fc8f79.mgorny@gentoo.org> Precedence: bulk List-Post: List-Help: List-Unsubscribe: List-Subscribe: List-Id: Gentoo Project discussion list X-BeenThere: gentoo-project@lists.gentoo.org Reply-To: gentoo-project@lists.gentoo.org MIME-Version: 1.0 Content-Type: multipart/signed; boundary="nextPart9717381.prLIq8P19P"; micalg="pgp-sha1"; protocol="application/pgp-signature" X-Archives-Salt: 5bc4f42f-70e0-42ce-9105-5d33293c9dce X-Archives-Hash: ac2938a6bde4d781dba59c91f36c1e12 --nextPart9717381.prLIq8P19P Content-Transfer-Encoding: quoted-printable Content-Type: text/plain; charset="UTF-8" On Thursday, January 5, 2017 10:56:49 PM EST Micha=C5=82 G=C3=B3rny wrote: >=20 > Well, this kind of superficial description does not raise any immediate > concerns. However, the devil's in the detail, and if you really want > comments, you should start providing some. =46or such major changes it may not be practical to lay out all the details= =2E Do=20 politicians every lay out ever detail of their agenda? To an extent you nee= d=20 to trust the judgement of those elected. If they do not represent your=20 interest and point of view, elect another or run yourself. > As far as I understand, this would effectively require every developer > to be a member of the Foundation. I think that Foundation membership is > more legally binding than 'being a developer =3D having commit access'. An indemnity clause or something to that effect should be suffice to transf= er=20 any and all liability from the individual to the Foundation. Which the=20 =46oundation is already liable for actions of developers, foundation member= or=20 not. > One thing I'm particular worried about is the potential of 'US > embargo'. What if a particular developer/recruit is/will not be legally > allowed to be a member of Gentoo Foundation? Interesting point, but I do not see that as being so much of an issue, even= if=20 from a "terrorist or hostile" state, or other bad actor. Given Gentoo is a= =20 =46OSS project, and most if not all will be made public or could be upon=20 request. I could see more legal liability to developers who can commit vs=20 foundation member who can do what? Unless Gentoo is allowing someone to do something nefarious and not=20 transparently. I do not see this as being an issue. If you can create a=20 =46acebook, Twitter, and other accounts from other countries. Then membersh= ip in=20 Gentoo should not be much of a deal. It is not like you get anything being = a=20 member at this time. If there was a majority in a hostile state, maybe. Keep in mind the US is founded on freedom of speech. An open source project= =20 could be argued along the same lines as freedom of speech and expression. N= ot=20 to mention an argument could be made for technical benefit of all, etc. Unless you live in say Iran, or North Korea, I am not sure it is an issue f= or=20 most. Quite many projects have members in other countries. =46or example https://www.firebirdsql.org/en/members/ Several are in Russia, and some in the US are not to happy with Russia :) =2D-=20 William L. Thomson Jr. --nextPart9717381.prLIq8P19P Content-Type: application/pgp-signature; name="signature.asc" Content-Description: This is a digitally signed message part. Content-Transfer-Encoding: 7Bit -----BEGIN PGP SIGNATURE----- iF0EABECAB0WIQTEeldqZjmVut8bVHJNcbKkg6ozUAUCWG7FWwAKCRBNcbKkg6oz UPxNAJ9LBxtH6sjZNDxWZEdRouUkINgi4gCdHbHmMfS9hnOV41sadD8OF1fPfD4= =0yWu -----END PGP SIGNATURE----- --nextPart9717381.prLIq8P19P--