• onlinepersona@programming.dev
    link
    fedilink
    English
    arrow-up
    0
    ·
    edit-2
    7 months ago

    How the hell are NATO and other large orgs not funding Matrix? Blows my mind.

    A particularly amazing real-life example of this came from a certain Ministry of Defence last week, whose procurement department (on being asked to help fund core Matrix development, given their operational dependency on Matrix) said: “You have to understand, we’re responsible for taxpayer money here. We can’t just make a donation to your open source project.” Apparently if we had built the same tech as a proprietary product, paying for it would apparently have been an infinitely better use of taxpayer money.

    I… don’t know what to say.

    Anti Commercial AI thingy

    CC BY-NC-SA 4.0

  • Andrew 1412@lemmy.sdf.org
    link
    fedilink
    arrow-up
    0
    ·
    7 months ago

    I can already picture it

    “you don’t want to open a government backdoor? No more tax money for you”

    “your foss project needs to be verified by the government to be selectable for founding, you don’t want to? Well, no tax money for you”

    “For your foss project to be created we need to verify it now that by law all foss projects receive tax money, you don’t want? Delete everything”

    And this is how you will own nothing and will be “happy”. You can’t escape the surveillance by using foss, go live in the woods before it’s to late, and don’t forget to carry your tin foil hat, be safe.

    • unalivejoy@lemm.ee
      link
      fedilink
      English
      arrow-up
      0
      ·
      edit-2
      7 months ago

      My code belongs to everyone. There’s as bug. You should probably fix that.

    • cooopsspace@infosec.pub
      link
      fedilink
      English
      arrow-up
      0
      ·
      edit-2
      7 months ago

      Backdoor? Even if it isn’t blatantly obvious - some autistic kid will notice a program runs 0.05 seconds slower and will work it out.

      At the very least if you’re going to be backdooring your code you might as well add “back door goes here” to your PR so we can easily cut it out when the hard fork happens without the backdoor included.

      • BreakDecks@lemmy.ml
        link
        fedilink
        English
        arrow-up
        0
        ·
        7 months ago

        Why the fuck does everyone keep referring to Andres Freund, the skilled Microsoft engineer who discovered this as an “autistic kid”? Can everyone doing that please fuck off?

        Even if he is autistic, which I am not finding anything suggesting he is, this shouldn’t be a part of the conversation. He protected the Linux community from a major exploit, just give him the credit for a job well done.

        • cooopsspace@infosec.pub
          link
          fedilink
          English
          arrow-up
          0
          ·
          7 months ago

          Sorry you’re right. I’m actually not across the matter enough to comment and have only heard the “autistic kid” part through like third hand knowledge.

          Although everyone is on the spectrum somewhere, especially in the IT space.

          But you’re right, the take away from this is I should learn about the topic better.

    • Ferk@lemmy.ml
      link
      fedilink
      arrow-up
      0
      ·
      edit-2
      7 months ago

      “you want a government backdoor on GPL licensed code? publish the backdoor for everyone to use, see and exploit/check for themselves. And/or watch as people simply take a version of the software built from a more reputable source without that backdoor instead. Thanks for the money!”

      “you want to force all foss projects existing in the global internet across countries to get paid by you or close? enjoy your logistic nightmare as you pay to be made fun of by all other countries while I fork projects with one click”

    • electricprism@lemmy.ml
      link
      fedilink
      arrow-up
      0
      ·
      edit-2
      7 months ago

      I applaud your skepticism, though I do feel that having the source open does help make that harder.

      Every time I see tinfoil references I often wonder if people realize the relation to tinfoil and blocking radiation or alpha particles, as they come in different sizes.

      Hell people wear leaded vests at the dentist to block radiation from oral xrays.

      Should we* start another silly club, Lead+Tinfoil? We all talk shit on the web but it seems like the majority is always the dumb masses getting scammed and duped and the weird guy in the corner gets ahead.

    • cmhe@lemmy.world
      link
      fedilink
      arrow-up
      0
      ·
      7 months ago

      “We give you money, so that you don’t put a backdoor from another country in your software.”

  • dsemy@lemm.ee
    link
    fedilink
    English
    arrow-up
    0
    ·
    7 months ago

    Element is literally a private, for-profit company. And they’re asking for donations and public funding?

    • obolstitelkisok@lemmy.world
      link
      fedilink
      arrow-up
      0
      ·
      7 months ago

      The Matrix.org is Community Interest Company registered in UK, and its full name is THE MATRIX.ORG FOUNDATION C.I.C., please, consider this as a proof proof.

      Given this information, I would guess it’s relatively safe to donate/give funding to the Matrix.org because its financial flows should be protected by UK law.

      BUT, it seems they never made a full report of incomes/spendings, the first one is expected in April 2024. But it’s already April 2024, and I don’t see a report. Anyway, it’s better to read original Issue in regard of such things, I might understood it incorrectly

        • tcit@beehaw.org
          link
          fedilink
          arrow-up
          0
          ·
          7 months ago

          And ? Obviously it’s not the for-profit structure which would benefit from donations. VC money is one way of financing things (which has the cash burn rate issue), public money and donations is another, why would changing from one model to another be something bad?

    • LWD@lemm.ee
      link
      fedilink
      arrow-up
      0
      ·
      7 months ago

      Private, for-profit, and let’s not forget antagonistic to the GDPR.

    • slacktoid@lemmy.ml
      link
      fedilink
      English
      arrow-up
      0
      ·
      edit-2
      7 months ago

      Big tech is already getting free code. This would simply fund the devs for the critical infrastructure. also if we force tax payer code to be GPL code it would force big tech code to also be GPLed. Which would significantly improve the current scenario.

      • thejevans@lemmy.ml
        link
        fedilink
        arrow-up
        0
        ·
        7 months ago

        I work for a US state agency that funds FOSS projects, and all projects that I write in-house or fund in the future will be GPL.

          • thejevans@lemmy.ml
            link
            fedilink
            arrow-up
            0
            ·
            7 months ago

            Not on the stuff I write in-house. I haven’t had any new external projects funded since I started here. I have asked for some current projects that are MIT to switch to GPL, but that’s a can of worms, and none have pulled the trigger yet.

            • slacktoid@lemmy.ml
              link
              fedilink
              English
              arrow-up
              0
              ·
              7 months ago

              Gotcha, that’s unfortunate. Fingers crossed, soon, and you’ll be able to GPL that shit from the start! I hope you are successful in converting some projects to GPL. I have heard of some people going the other way from GPL to BSD because of their idea of what “freedom” means.

      • 420stalin69 [he/him]@hexbear.net
        link
        fedilink
        English
        arrow-up
        0
        ·
        edit-2
        7 months ago

        If the public are paying for it, then it becomes a subsidy.

        And good luck getting the US government to require the code to be GPLed. That’s even less likely to happen than a public subsidy for OSS at all.

        They typically do the opposite and require “commercialization” to ensure the benefit of the publicly-funded technology is captured by their donors.

        This is how it basically works in biotech, for example. Government grants to study the medicine and then when the scientists actually find something important it becomes a “public-private partnership” often without even a royalty for the public let alone making it a public good.

        That’s not how government funding works in a modern democracy, unfortunately. It would amount to a cash transfer to big tech to make the public pay their R&D costs.

        • slacktoid@lemmy.ml
          link
          fedilink
          English
          arrow-up
          0
          ·
          7 months ago

          If the public are paying for it, then it becomes a subsidy.

          I agree. And its a public good. It should be

          And good luck getting the US government to require the code to be GPLed. That’s even less likely to happen than a public subsidy for OSS at all.

          true but thats how it should be.

          i agree. It’s a problem but not doing anything just harms the FOSS ecosystem. We can help foster FOSS ecosystems while trying to cutrail big tech. Cause corporations gonna number line go up.

  • RobotToaster@mander.xyz
    link
    fedilink
    arrow-up
    0
    ·
    7 months ago

    Imagine having NATO, one of the largest organisations in the world, leeching off your open source project, lol.

    • poVoq@slrpnk.net
      link
      fedilink
      arrow-up
      0
      ·
      7 months ago

      That’s not what the article says, but I was also confused at first. They fund New Vector directly it seems.

      • slacktoid@lemmy.ml
        link
        fedilink
        English
        arrow-up
        0
        ·
        7 months ago

        I mean the fact that they are scrambling for funding while being vital infrastructure to them i think is the larger issue. Like at this point i dont care if its new vector or matrix (tho ideally matrix) they shouldn’t be begging for money when you supply NATO.

        • poVoq@slrpnk.net
          link
          fedilink
          arrow-up
          0
          ·
          edit-2
          7 months ago

          They have been burning through 50 million euros of VC money in less than 10 years (and that wasn’t their only source of income). I think most governments do not consider a glossy chat service to be worth that much, and they are probably right.

          And yes I am aware government burn a lot of money on other IT projects but that’s besides the point.

          P.s.: to my knowledge the security relevant communication within NATO still happens through a special XMPP based system. This Matrix system seems to be only for business contacts what ever that means in the case of NATO.

          • chebra@mstdn.io
            link
            fedilink
            arrow-up
            0
            ·
            7 months ago

            @poVoq but that analogy would only work if the government was the only customer, footing the whole bill. More appropriate perspective is looking at how much would they pay if they got the same service from say Microsoft, or Slack.

            • poVoq@slrpnk.net
              link
              fedilink
              arrow-up
              0
              ·
              7 months ago

              Indeed, and they probably pay a similar amount.

              My point was mainly that Element got used to having too much money and doing stupid things with it and now that they start having to operate like a normal software vendor they cry that it isn’t enough.

              I would be more sympethatic to their argument if they were actually developing an open standard like XMPP, but they run their own little incompatible fiefdom like all the other commercial vendors.