Comment by throwaw12

15 hours ago

I liked the idea as well, maybe OSS should adopt 6 months availability and 6 months for enterprise support schedule. This way both could benefit, OSS gets more funding, enterprise gets support (cheaper than hiring full-time employee for specific OSS)

31 comments

throwaw12

bijowo1676 6 hours ago

nice idea to time vacation in the summar, right around major security conferences (blackhat, defcon, etc), when large bulk of CVEs get published, to put some fire under the enterprise butts

charcircuit 14 hours ago

Until someone races to the bottom to do 12 months of availability.

t-writescode 14 hours ago
Races to the bottom to … do work exclusively for free and not make any money out of the hopes that they become the most popular OSS toolkit, with an end goal of … what?
- jarym 10 hours ago
  
  End goal of complaining that no one pays for their efforts.
- altairprime 8 hours ago
  
  Validation, often. Stars and installs make self-worth integer go up, etc.
  Greed, sometimes. Gotta get those usercounts high to get acquihired / to sell out / to flip on the paid subs for formerly free features.
  I can’t remember the word for “prosocial through lowering cost to zero” is but sometimes that too.
  
  5 replies →
- embedding-shape 12 hours ago
  
  > at they become the most popular OSS toolkit, with an end goal of … what?
  Look at how any "FOSS + VC + for-profit" company in the last 5-10 years worked out, and you'll see the playbook.
- codercowmoo 13 hours ago
  
  bait and switch
  
  1 reply →
nkrisc 12 hours ago
A race to the bottom of… unpaid work that eliminates the paid work? Can you elaborate?
- zaphirplane 11 hours ago
  
  We don’t need to speculate do we, there are tons of real non company run OSS projects
  Now I personally wish lawyers and plumbers also got into the free work thing but here we are
  
  3 replies →
- DaiPlusPlus 12 hours ago
  
  AI-slop PRs automerged in response to AI slop bug reports.
- pydry 11 hours ago
  
  Coz just about everyone wants to be that one guy in Nebraska thanklessly maintaining this bit of digital infrastructure, apparently?
  Yeah me neither.
  I think the only thing that would convince people to move away from curl at this point would be if curl had a heartbleed level vulnerability and failed to fix it quickly.
  
  2 replies →
throwaw12 13 hours ago
then it is up to community to fork the project if they find it valuable and can convince people migrating to their fork.
many engineers actually work that way, right? We are employed for 12 months and give our availability fully to the company and we get salary for it, why isn't it allowed to others?
- londons_explore 13 hours ago
  
  A fork of a project that does security patches only is an interesting idea...
  Since then a diff of the two projects will be a perfect list of security issues and will make designing an attack rather easy...
  
  1 reply →
ralferoo 7 hours ago

Isn't that what we have already?
latexr 12 hours ago

That’s just the status quo.
thunderbong 13 hours ago

Please go ahead and fork curl
nchmy 12 hours ago
Ah yes, people will just be clamoring to use hURL
- HugoTea 12 hours ago
  
  Or the Rust re-write rURL
  
  1 reply →