Project

General

Profile

Freedom Issue #2966

[nmap]: [GNU-linux-libre] Issues with NMAP changing license

bill-auger - 8 months ago - . Updated 2 months ago.

Status:
forwarded upstream
Priority:
freedom issue
Assignee:
-
% Done:

0%


Description

'nmap' has been blacklisted and downgraded to v7.80 in [libre], per request by the FSF1 - v7.90 has a non-free license - the FSF is working with the upstream to remedy the situation

https://lists.nongnu.org/archive/html/gnu-linux-libre/2021-01/msg00000.html

History

#1

Updated by gap 6 months ago

For now, nmap has applied its v7.80 license to v7.90 and v7.91.

Source: https://github.com/nmap/nmap/issues/2199

I don't know whether the Arch package has updated to this or uses the license considered proprietary, however. A repackage using the v7.80 license on v7.91 may be required.

The v7.80 license was not the GNU GPLv2, as everyone presumably thought it was; it was actually a custom license derived from the GPL2.

I don't know if anyone has actually audited that custom v7.80 license to ensure it is free, although nobody has seemingly noticed it wasn't GPL2 for years.

nmap also seems to be planning to switch to a different license in the future.

#2

Updated by bill-auger 6 months ago

at this point, its not important what arch does - the FSF has
made an explicit request, that we hold at v7.80 until they make
a decision

people have noticed now, that most of the problems with the new
license, were present in the original license too - it may turn
out that parabola should never have had nmap in the first place

#3

Updated by bill-auger 2 months ago

this issue has languished too long - i sent a message to the FSDG and FSD mailing lists, and to the FSF licensing team - nmap has been effectively removed from the FSD since january, with this notice:

This software has failed the license review due to a defect in
the official license. We hid the page to prevent accidental
downloads of non-free code while we investigate the issue.

if no formal conclusion is reached soon, i suggest that we blacklist it

https://lists.nongnu.org/archive/html/gnu-linux-libre/2021-07/msg00000.html
https://lists.gnu.org/archive/html/directory-discuss/2021-07/msg00005.html
FSF licensing RT ticket: [gnu.org #1739058]

Also available in: Atom PDF