1059
Linus Torvalds affirms expulsion of Russian maintainers
(www.theregister.com)
This is a most excellent place for technology news and articles.
I think given the current political situation this is the right call. No one knows what the Russian government might compel otherwise innocent devs to do.
That said, we (and I mean society, not any particular individual) should be mindful that we don’t slip into bigotry.
I’ve worked side by side with RU devs who were both personable and damned competent. Never were their tech skills in doubt, and I retain quite a bit of respect for those individuals.
I’d not do the same today explicitly because of the political and compliance implications. It’s unfortunate, but necessary.
Again, with open software that is not necessary... If we get to believe that argument, those potential "FSB" coders would be the ones who would notice if the CIA was trying to place a back door in the kernel too. Open Software is OPEN!!
Would they? The XZ utils backdoor was only discovered by what can only be described as an insanely attentive developer who happened to be testing something unrelated and who happened to notice a small increase in the startup time of the library, and was curious enough to go and figure out why.
Open does not mean "can't be backdoored".
Can you explain me why Linux waited till the very last moment of the Executive Order 14071's grace period (the order is from April 2022!) to apply it? Obviously he trusted those people, or the verification system of the open system! Imagine you don't like a political party for bad... fair enough, so you ban their representatives from voting table... don't you think, that incentivizes the other party committing fraud? In these open system things, the more eyes the better, I don't care if commies, libertarians, ultra-right or whatever, the diversity is what keep it in check..
Slow walking compliance is normal. It keeps assets liquid and processes & people in place as long as possible before making changes. It also prevents the cost of changing back and forth if a new rule is struck down before its final date.
What will happen often is that a compliant procedure will be developed as soon as possible, but no changes will be made until absolutely necessary. That gives the organization maximum time to figure out other routes of compliance, fight the rule and continue at pace before they change.