Why GPLv3 Will Supplant GPLv2
One of the most important recent events in the world of free software has been the release of version 3 of the GNU GPL. There were fierce arguments about its utility while it was being drawn up, and although the rhetoric has abated somewhat, there is still a big question mark over its eventual success. Some evidence suggests that GPLv3 uptake is coming along nicely, while other reports indicate a reluctance to adopt it (but note also Matt Asay's neat reconciliation of these contradictory messages). To see what's likely to happen in the long term, it's useful to look back at the past history of licence adoption.
The first detailed discussion about licences arose when companies began offering open source software other than GNU/Linux distributions. Many were rather timid or even downright sceptical about embracing the GNU GPL wholeheartedly, and chose instead to adopt a dual licensing policy, offering a version of the software (sometimes with extra features) under a non-free licence as well as a version under the GNU GPL. This was pioneered by L. Peter Deutsch with Ghostscript.
Ghostscript was the direct inspiration for the early dual-licensing approach of MySQL, where initially the free licence employed was not the GNU GPL. As MySQL's CEO, Marten Mickos, told me last year:
Initially, [MySQL's founders] had another dual licence that said it's free on Linux but you pay on Unix and Windows. And at some point they realised to get included in the Linux distros you needed a licence that people could readily accept. People had nothing against the MySQL licence, but it took time for them to read through it and accept it. And [the co-founders] argued that if they would adopt the GPL then there would be no questions asked.
The interesting point here is that it was not legal issues that prompted the adoption of the GPL, but simply a desire to make it easier for MySQL to be included in distributions by simplifying the legal wrapping. MySQL is not alone in making the move to the GNU GPL for this reason.
Alfresco is the leading open source player in the enterprise content management space. It's a relatively recent start-up, dating back to January 2005. And yet, since then, it's been through several licences as it has tried to find the best solution for itself and its customers.
Initially it adopted the LGPL, but as John Powell, Alfresco's co-founder and CEO, explains:
The difficulty we found with that, early on, was that it's almost too permissive as a licence. And for an open source company where we had assembled the engineers and were creating the product before we'd built, if you like, our reputation, our brand, on the Internet, we wanted to make sure that people know that Alfresco had created the product.
And LGPL doesn't allow you to do that. So we moved quite rapidly to a licence called MPL, which is the one used by Firefox, that also allows you to have what's called attribution in the product. So someone building a product would refer to the software created by Alfresco or whatever.
But there was a problem with the MPL too:
After about 18 months, we got to the point where Alfresco was becoming well known. A lot of people were saying, "We want to work with Alfresco, but we don't understand this MPL licence." And open source works when you remove all the barriers to customer acquisition, so you want to make everything as straightforward as possible. The last thing you want is a licensing discussion.
Whether it's good or bad, the most popular licence is the GPL. So we thought, "We'll have the GPL." And that's where we are now.
What's interesting about this is that once again the GNU GPL was adopted not out of any passionate belief that it was the best, but simply because it was perceived to be the norm.
I'd like to suggest that the same will happen with the GNU GPLv3. As we are seeing, some projects have already moved to version 3, while others are holding back. Nonetheless, version 3 is the latest version, and as such in some sense the "official" GPL. So when users are confronted with software that uses earlier versions, they may well wonder why that is – unaware of, and probably indifferent to, the detailed legal arguments. Instead, many will see it in black and white terms: that version 3 is an update to version 2,and therefore preferable.
In other words, it will be marketing rather than legal considerations that will gradually push open source companies to adopt GNU GPL version 3 for their software. And where the companies lead, the independent projects will tend to follow (excluding likely holdouts such as the Linux kernel), because it is the companies who are spearheading the massive uptake of free software in new areas. Again,it will just be easier for projects to go with the flow and adopt version 3 in order to fit in with the prevailing approach adopted by companies.
Ultimately GNU GPL version 3 will supersede version 2 not because it's better – that's a matter of opinion – but because three is bigger than two, which is a fact.
Glyn Moody writes about open source at opendotdotdot.
Fast/Flexible Linux OS Recovery
On Demand Now
In this live one-hour webinar, learn how to enhance your existing backup strategies for complete disaster recovery preparedness using Storix System Backup Administrator (SBAdmin), a highly flexible full-system recovery solution for UNIX and Linux systems.
Join Linux Journal's Shawn Powers and David Huffman, President/CEO, Storix, Inc.
Free to Linux Journal readers.Register Now!
- Firefox 46.0 Released
- Ubuntu Online Summit
- Devuan Beta Release
- The Qt Company's Qt Start-Up
- May 2016 Issue of Linux Journal
- The US Government and Open-Source Software
- The Death of RoboVM
- Download "Linux Management with Red Hat Satellite: Measuring Business Impact and ROI"
- New Container Image Standard Promises More Portable Apps
- Open-Source Project Secretly Funded by CIA
In modern computer systems, privacy and security are mandatory. However, connections from the outside over public networks automatically imply risks. One easily available solution to avoid eavesdroppers’ attempts is SSH. But, its wide adoption during the past 21 years has made it a target for attackers, so hardening your system properly is a must.
Additionally, in highly regulated markets, you must comply with specific operational requirements, proving that you conform to standards and even that you have included new mandatory authentication methods, such as two-factor authentication. In this ebook, I discuss SSH and how to configure and manage it to guarantee that your network is safe, your data is secure and that you comply with relevant regulations.Get the Guide