zlacker

[return to "Debian Statement on the Cyber Resilience Act"]
1. teeray+Vz[view] [source] 2023-12-28 02:17:10
>>diyftw+(OP)
Obviously it wouldn’t work for a project as large as Debian, but I wonder if there is some exclusion clause that can be inserted that forbids all users that would be covered under the Cyber Resilience Act from using the software?
◧◩
2. mycall+SK1[view] [source] 2023-12-28 14:26:24
>>teeray+Vz
Won't work as the CRA overrides any license (this is explicitly written).
◧◩◪
3. teeray+gH5[view] [source] 2023-12-29 19:04:09
>>mycall+SK1
How can that be though? If there are users using your software where their nation imposes requirements you don’t want to deal with, you should be able to bar those users from using your software. Licensing is typically that mechanism.

Think if it were something else as an exercise: say some nation implemented rules requiring you to pay $10k USD/year to that government as some nonsense open-source fee. Common sense says you should be able to say, in response, “well, then I guess I’m cutting that country off.” If the rule making country shouts “no takebacks!” and supersedes licensing, then wouldn’t that impinge on sovereignty?

[go to top]