Re: Copyright verification needed

2007-06-24 Thread Bruno Costacurta 
On Sunday 24 June 2007 01:30, [EMAIL PROTECTED] wrote:
 On 6/24/07, Bruno Costacurta [EMAIL PROTECTED] wrote:
  Hello,
 
  I'm preparing an ITP (Intend To Package) as a newbie regarding Debian
  packaging. About the source (for the ITP) I'm not the developer and
  simply reproduced the copyright I found with source code.
  Could you please check the attached copyright file and its respect to
  Debian rules about license / copyright ?
  The template of the file was created by dh_make tools and I manually
  completed
  needed fields.

 It appears to be a standard 3-clause BSD license, which is fine,
 however it also claims to link with OpenSSL and some stuff from
 Trolltech.

 OpenSSL is fine, however it is GPL incompatible, so if this software
 is a library, you have to be careful.

 The stuff from Trolltech is another matter though - they use the GPL
 and the QPL I believe. If you use it under the GPL, then it can't link
 to OpenSSL, and I believe the QPL is widely considered non-free.

 --
 Andrew Donnellan 
 ajdlinuxATgmailDOTcom (primary)ajdlinuxATexemailDOTcomDOTau (secure)
  http://andrewdonnellan.comhttp://ajdlinux.wordpress.com
  [EMAIL PROTECTED]hkp://subkeys.pgp.net 0x5D4C0C58
 http://linux.org.auhttp://debian.org
 Spammers only === [EMAIL PROTECTED] ===

Many thanks for your attention.
I checked more closely the licenses related to OpenSSl and Trolltech
which I found within related Debian packages I install to build my own package 
(please find both licenses attached).
My personal feeling is that they looks fine.

Maybe I should simply complete my first copyright file by adding licenses from 
OpenSSL and Trolltech (I repeat: both present in their respective Debian 
packages) ?
I suppose I can rely on the fact that because such licenses are already 
present in other debian packages I can build my own with same licenses. 
Correct ?

Many thanks for confirmation / correction.

Bye,
Bruno
--

PGP key ID: 0x2e604d51
Key : http://www.costacurta.org/keys/bruno_costacurta_pgp_key.html
Key fingerprint = 713F 7956 9441 7DEF 58ED  1951 7E07 569B 2E60 4D51
--
This package was debianized by Christoph Martin [EMAIL PROTECTED] on
Fri, 22 Nov 1996 21:29:51 +0100.

Copyright (c) 1998-2004 The OpenSSL Project
Copyright (c) 1995-1998 Eric A. Young, Tim J. Hudson

The upstream sources were obtained from http://www.openssl.org/


  LICENSE ISSUES
  ==

  The OpenSSL toolkit stays under a dual license, i.e. both the conditions of
  the OpenSSL License and the original SSLeay license apply to the toolkit.
  See below for the actual license texts. Actually both licenses are BSD-style
  Open Source licenses. In case of any license issues related to OpenSSL
  please contact [EMAIL PROTECTED]

  OpenSSL License
  ---

/* 
 * Copyright (c) 1998-2004 The OpenSSL Project.  All rights reserved.
 *
 * Redistribution and use in source and binary forms, with or without
 * modification, are permitted provided that the following conditions
 * are met:
 *
 * 1. Redistributions of source code must retain the above copyright
 *notice, this list of conditions and the following disclaimer. 
 *
 * 2. Redistributions in binary form must reproduce the above copyright
 *notice, this list of conditions and the following disclaimer in
 *the documentation and/or other materials provided with the
 *distribution.
 *
 * 3. All advertising materials mentioning features or use of this
 *software must display the following acknowledgment:
 *This product includes software developed by the OpenSSL Project
 *for use in the OpenSSL Toolkit. (http://www.openssl.org/)
 *
 * 4. The names OpenSSL Toolkit and OpenSSL Project must not be used to
 *endorse or promote products derived from this software without
 *prior written permission. For written permission, please contact
 *[EMAIL PROTECTED]
 *
 * 5. Products derived from this software may not be called OpenSSL
 *nor may OpenSSL appear in their names without prior written
 *permission of the OpenSSL Project.
 *
 * 6. Redistributions of any form whatsoever must retain the following
 *acknowledgment:
 *This product includes software developed by the OpenSSL Project
 *for use in the OpenSSL Toolkit (http://www.openssl.org/)
 *
 * THIS SOFTWARE IS PROVIDED BY THE OpenSSL PROJECT ``AS IS'' AND ANY
 * EXPRESSED OR IMPLIED WARRANTIES, INCLUDING, BUT NOT LIMITED TO, THE
 * IMPLIED WARRANTIES OF MERCHANTABILITY AND FITNESS FOR A PARTICULAR
 * PURPOSE ARE DISCLAIMED.  IN NO EVENT SHALL THE OpenSSL PROJECT OR
 * ITS CONTRIBUTORS BE LIABLE FOR ANY DIRECT, INDIRECT, INCIDENTAL,
 * SPECIAL, EXEMPLARY, OR CONSEQUENTIAL DAMAGES (INCLUDING, BUT
 * NOT LIMITED TO, PROCUREMENT OF SUBSTITUTE GOODS OR SERVICES;
 * LOSS OF USE, DATA, OR PROFITS; OR BUSINESS INTERRUPTION)
 * HOWEVER CAUSED AND ON ANY THEORY OF LIABILITY, WHETHER IN

Re: Copyright verification needed

2007-06-24 Thread ajdlinux 

On 6/24/07, Bruno Costacurta [EMAIL PROTECTED] wrote:

Many thanks for your attention.
I checked more closely the licenses related to OpenSSl and Trolltech
which I found within related Debian packages I install to build my own
package
(please find both licenses attached).
My personal feeling is that they looks fine.

Maybe I should simply complete my first copyright file by adding licenses
from
OpenSSL and Trolltech (I repeat: both present in their respective Debian
packages) ?
I suppose I can rely on the fact that because such licenses are already
present in other debian packages I can build my own with same licenses.
Correct ?


The Trolltech license is still a problem, since it's GPL, and OpenSSL
cannot be linked to a GPL program (quoting from
http://www.fsf.org/licensing/licenses/index_html#GPLIncompatibleLicenses):


The license of OpenSSL is a conjunction of two licenses, one of them
being the license of SSLeay. You must follow both. The combination
results in a copyleft free software license that is incompatible with
the GNU GPL. It also has an advertising clause like the original BSD
license and the Apache license.
We recommend using GNUTLS instead of OpenSSL in software you write.
However, there is no reason not to use OpenSSL and applications that
work with OpenSSL.


It is incompatible because there is an advertising clause and a
name-change clause, both of which make it impossible to link to a GPL
program.

I think you'd need to do one of the following:
  * not use OpenSSL
  * convert the OpenSSL code to use GNUTLS
  * or get a GPL exemption from Trolltech, which you most likely
won't be able to.

Can another d-l regular confirm?
--
Andrew Donnellan 
ajdlinuxATgmailDOTcom (primary)ajdlinuxATexemailDOTcomDOTau (secure)
http://andrewdonnellan.comhttp://ajdlinux.wordpress.com
[EMAIL PROTECTED]hkp://subkeys.pgp.net 0x5D4C0C58
   http://linux.org.auhttp://debian.org
   Spammers only === [EMAIL PROTECTED] ===


--
To UNSUBSCRIBE, email to [EMAIL PROTECTED]
with a subject of unsubscribe. Trouble? Contact [EMAIL PROTECTED]

Re: DPL's view of debian-legal (was: Debian Trademarks Summary)

2007-06-24 Thread MJ Ray 
Ben Finney [EMAIL PROTECTED] wrote:
 Anthony Towns [EMAIL PROTECTED] writes:
[...stuff...]
 What do *you*, as DPL, think debian-legal should be, and how is it
 currently different to that ideal? [...]

Please check your facts before posting: aj is not DPL since 2007-04-17.
http://www.au.debian.org/vote/2007/vote_001

His answers may be interesting as an ftpmaster, but as I understand it
from the log, he's not usually handling NEW and isn't the only ftpmaster
handling moves, so his strange ideas aren't fatal.

Hope that helps,
-- 
MJR/slef
My Opinion Only: see http://people.debian.org/~mjr/
Please follow http://www.uk.debian.org/MailingLists/#codeofconduct


-- 
To UNSUBSCRIBE, email to [EMAIL PROTECTED]
with a subject of unsubscribe. Trouble? Contact [EMAIL PROTECTED]

Re: DPL's view of debian-legal

2007-06-24 Thread Ben Finney 
MJ Ray [EMAIL PROTECTED] writes:

 Ben Finney [EMAIL PROTECTED] wrote:
  What do *you* [Anthony Towns], as DPL, think debian-legal should
  be [...]

 Please check your facts before posting: aj is not DPL since
 2007-04-17.  http://www.au.debian.org/vote/2007/vote_001

Whoops, you're right. A brain lapse on my part, thanks.

-- 
 \ I got contacts, but I only need them when I read, so I got |
  `\  flip-ups.  -- Steven Wright |
_o__)  |
Ben Finney


-- 
To UNSUBSCRIBE, email to [EMAIL PROTECTED]
with a subject of unsubscribe. Trouble? Contact [EMAIL PROTECTED]

Re: Bacula: GPL and OpenSSL

2007-06-24 Thread Josselin Mouette 
Le vendredi 22 juin 2007 à 22:11 +0200, Kern Sibbald a écrit :
  I do not think that GPLv3 permits it.  
 
 GPL v3 *is* compatible with the OpenSSL (actually the Apache) license 
 according to FSF.

It may be compatible with the latest Apache license, but I don't see
anything in section 7 that allows the obnoxious advertising clause of
the OpenSSL license.

Cheers,
-- 
 .''`.
: :' :  We are debian.org. Lower your prices, surrender your code.
`. `'   We will add your hardware and software distinctiveness to
  `-our own. Resistance is futile.


signature.asc
Description: Ceci est une partie de message	numériquement signée