fail2ban has one core maintainer https://github.com/fail2ban/fail2ban and he has only 3 Github sponsors https://github.com/sebres

WTF

I can't even comprehend how many servers are protected by fail2ban, how many compromises are avoided, how many people who run hobby things all the way up to major sites that get to sleep soundly every night... because of this single project.

#oss

GitHub - fail2ban/fail2ban: Daemon to ban hosts that cause multiple authentication errors

Daemon to ban hosts that cause multiple authentication errors - fail2ban/fail2ban

^GitHub

With regard to xz backdoor, did anyone actually have any idea this was going on? With all these vendors doing source code scanning, was there any indication of maliciousness?

#OSS #Security #SBOM #xz

So now that we all understand that thanklessly relying on free work of overworked maintainers is a problem, how about we put our money where our mouth is?

I think @AndresFreundTec needs a fat bonus check for saving our asses.

And Lasse Collin needs a lot of support, and probably a nice vacation.

I pledge $100, for starters.

Now how can we make sure to send the funds to the correct people?

Or is there already any fundraiser that I missed?

#liblzma #xz #ssh #security #oss #floss

Welp. It's official. #Redis is no longer #OSS

While I wasn't a contributor to the core, I presented on it dozens of times, talked to thousands, and wrote a book about it.

I probably wouldn't have done any of that with that kind of license.

Very disappointed.

Cathedral or Bazaar? We made our choice.

Over the last 15 years, we have supported the use of open technologies in public administration.

The Open Source Observatory has helped the European public sector leverage open technologies effectively and efficiently by providing various resources, including a knowledge centre to reveal the benefits and follow #EU open source software development.

Join us on 21 November to discuss #OpenSource policies, funding, and more → https://osorturns15.eu

#OSS