Follow @Openwall on Twitter for new release announcements and other news
[<prev] [next>] [<thread-prev] [thread-next>] [day] [month] [year] [list]
Date: Mon, 16 Oct 2023 10:01:44 -0400
From: Demi Marie Obenour <>
Subject: Re: linux-distros membership application of openEuler

On Mon, Oct 16, 2023 at 10:23:50AM +0200, Greg KH wrote:
> On Mon, Oct 16, 2023 at 10:08:50AM +0200, Marcus Meissner wrote:
> > Hi,
> > 
> > Regardless of your viability of subscription status I think we also
> > (sadly) have to consider current geopolitical issues here.
> > 
> > As far as I understand, US companies and US citizens are not permitted
> > to work with Chinese organizations and/or Chinese nationals.
> They can when working in the open on public projects and other
> open-source-like things.  For "closed" lists and groups, please consult
> a lawyer as the rules there are quite varied and depends on the
> countries and companies involved.
> But to be sure, again, consult your corporate lawyers, they know the
> rules and the issues involved better than I do.
> good luck!
> greg k-h

The question is _who_ should consult their lawyers.  Many security
researchers are operating on their own time or work with small
companies.  These researchers may not have access to corporate lawyers
trained in the relevant areas of law, and expecting them to retain a
lawyer at their own expense before posting is not reasonable.
Therefore, if openEuler joining linux-distros would require them to do
this, the request should (unfortunately) be denied.
Demi Marie Obenour (she/her/hers)
Invisible Things Lab

Download attachment "signature.asc" of type "application/pgp-signature" (834 bytes)

Powered by blists - more mailing lists

Please check out the Open Source Software Security Wiki, which is counterpart to this mailing list.

Confused about mailing lists and their use? Read about mailing lists on Wikipedia and check out these guidelines on proper formatting of your messages.