this post was submitted on 26 Aug 2023
22 points (84.4% liked)
Monero
1667 readers
16 users here now
This is the lemmy community of Monero (XMR), a secure, private, untraceable currency that is open-source and freely available to all.
Wallets
Android (Cake Wallet) / (Monero.com)
iOS (Cake Wallet) / (Monero.com)
Instance tags for discoverability:
Monero, XMR, crypto, cryptocurrency
founded 1 year ago
MODERATORS
you are viewing a single comment's thread
view the rest of the comments
view the rest of the comments
Can you expound on that and perhaps share some examples of your latter point?
@kowalabearhugs Currently, some parts of Cuprate are licensed under AGPL-3. This means anyone using this code should keep their derivative works as open source and use the same license. The license protects the project from hostile forks and generally serves as a deterrent against privatization of public goods. Lemmy, Mastodon and many other Fediverse servers use AGPL-3 license and it is totally reasonable choice for Cuprate too.
However, when this CCS proposal was discussed some people started to push aggressively against AGPL (going as far as calling it "legal nightmare") and the developer agreed to change the license and even agreed to re-write AGPL-licensed parts of the application if needed.
As I said, this is a mistake, and makes Monero weaker. I think Cuprate may eventually become a dominant implementation because Rust provides a better security and developer experience, and a big chunk of modern cryptographic libraries is being written in Rust (especially in zero-knowledge cryptography). But now any company can safely use Cuprate as part of their infrastructure because it has business-friendly license, create a closed-source fork and hire developers who were previously working on open-source version.
The change of license is basically a signal that corporate interests are more important than interests of ordinary users. As for examples of where this attitude leads, see any cryptocurrency project where companies or "foundations" pay developers for their work and therefore shape the product. Exceptions are rare, and Monero is one of few that relies on donations and crowdfunding.
Thank you for the write-up, I really appreciate it. You make some excellent points. Consider bringing this up in the CCS proposal discussion.
This Licence decision diagram might be helpful for general public:
The above message was cross posted on Reddit by koalabearhugs. My reply on this message seems to get tricked by Reddit (not visible?), so I reply here as well.
" Can't agree with you more. I am very surprised it got to funding this way. This is a very bad decision for Monero as a whole, and the aggressive way the licensing decision got pushed makes you wonder. It is very hard to crack Monero in a technical sense, this push for permissive (=corporate) licensing is opening Monero widely to be brought down in the future via another angle. For some reason the community doesn't care. It behaves as an ignorant bunch of people that won't even investigate the risks and consequences. Goldbacks might be a better route after all. "
In the same thread on Reddit kayabaNerve pointed out some technical advantages of the rewrite in Rust. My reply to this message: "All the supposed technical advantages are of no use if permissive (=corporate) licensing is used. Dangerous development it is."
Sorry for the crossposts.
Choosing the wrong licensing-model could be disastrous for Monero, so I hope people reconsider.
@RealPappenheimer This issue was discussed at length in monero-community matrix room when proposal was submitted. I guess it's too late to reverse the decision. Even the person who wrote AGPL-licensed modules appears to support the change, although I don't know why they suddenly changed their mind.