Re: License of ROOT: acceptable for non-free?

To: Debian legal mailing list <debian-legal@lists.debian.org>
Subject: Re: License of ROOT: acceptable for non-free?
From: Henning Makholm <henning@makholm.net>
Date: 31 Jan 2003 22:06:52 +0100
Message-id: <[🔎] yahr8atqb9v.fsf@pc-043.diku.dk>
In-reply-to: Craig P Steffen's message of "Fri, 31 Jan 2003 10:17:32 -0600 (CST)"
References: <[🔎] Pine.LNX.4.44.0301310344140.16916-100000@boater.Princeton.EDU> <[🔎] 20030131103539.GB22834@valiant.sbg.palfrader.org> <[🔎] 1044029852.3e3aa19c2f5db@webmail.craigsteffen.net>

Scripsit Craig P Steffen <craig@craigsteffen.net>

> It's an analysis package, analagous to Gnuplot.  I don't think that
> it does any network stuff at all, so I don't think that security is
> an issue.

Security is always an issue. If it's found out, for example, that the
program has a buffer overflow that leaves it vulnerable to an attack
through a malicious data file the user downloads from the net ("Here's
the raw data from my cold fusion experiment, in ROOT format! You do
the analysis yourself if you don't believe me!"), it would be a Good
Thing to be able to distribute a security patch - even though the
possible damage would be limited to the poor user's own account.

-- 
Henning Makholm                    "They want to be natural, the anti-social
                                 little beasts. They just don't realize that
                         everyone's good depends on everyone's cooperation."

Reply to:

References:
- License of ROOT: acceptable for non-free?
  - From: "Kevin B. McCarty" <kmccarty@Princeton.EDU>
- Re: License of ROOT: acceptable for non-free?
  - From: Peter Palfrader <weasel@debian.org>
- Re: License of ROOT: acceptable for non-free?
  - From: Craig P Steffen <craig@craigsteffen.net>

Prev by Date: Re: ImageJ 2 :(
Next by Date: Re: ImageJ 2 :(
Previous by thread: Re: License of ROOT: acceptable for non-free?
Next by thread: Re: License of ROOT: acceptable for non-free?
Index(es):
- Date
- Thread