Hi All!I am builiding a firewall appliance based on CentOS. I am using CentOS as it is with some packages removed and some configuration done to security harden the appliance. Over and above this I will be installing Apache Web Server and Tomcat to run my web application which will give a web interface to configure the iptables in the appliance. There is no development done in iptables. It is used as available in its latest version online. As Tomcat will be running as non-root so it cant actually write the iptables rule. For writing iptables rules I will be using C++ executables with SUID bit set.Once this will be done, I am planning to Commercialise it. Am I allowed to do so without revealing my web application code and the C++ executable code (for iptables)? I know all the CentOS packages, etc. might fall in GPL and as a result I should be supplying source code of all the packages in CentOS.
What else is expected from me? Thanks.
On 08/08/2016 10:23 PM, Akshat Kakkar wrote:
I know all the CentOS packages, etc. might fall in GPL and as a result I should be supplying source code of all the packages in CentOS.
What else is expected from me?
Certainly, I'd think you should include the source code for the CentOS distribution. When doing so, pay attention to:
https://www.centos.org/legal/trademarks/
and:
Thanks for the reply. I had already visited the links mentioned by you.
The link https://www.centos.org/legal/trademarks/ talks about non-usage of trademarks in commercial software which is taken care. The link https://www.centos.org/legal/ talks very less about legal terms and condition. Is there some other link which mentions about the License model used by CentOS. Infact, no where it is mentioned that it follows GPL or not. Just in that trademarks link below there is some mentioning of Creative Commons 3.0 but that looks only for trademark.
Any idea will be highly helpful? Atleast if I know which license it follows, then I will be able to consult a lawyer for the same to know things in detail.
On Tuesday, 9 August 2016 10:40 PM, Gordon Messmer gordon.messmer@gmail.com wrote:
On 08/08/2016 10:23 PM, Akshat Kakkar wrote:
I know all the CentOS packages, etc. might fall in GPL and as a result I should be supplying source code of all the packages in CentOS.
What else is expected from me?
Certainly, I'd think you should include the source code for the CentOS distribution. When doing so, pay attention to:
https://www.centos.org/legal/trademarks/
and:
_______________________________________________ CentOS mailing list CentOS@centos.org https://lists.centos.org/mailman/listinfo/centos
10.8.2016, 10:29, Akshat Kakkar kirjoitti:
Is there some other link which mentions about the License model used by CentOS. Infact, no where it is mentioned that it follows GPL or not. Just in that trademarks link below there is some mentioning of Creative Commons 3.0 but that looks only for trademark.
The EULA file at the root of the distribution discs says: "The Distribution is released as GPLv2. Individual packages in the distribution come with their own licences."
http://mirror.centos.org/centos-7/7/os/x86_64/EULA
On 09/08/16 01:23 AM, Akshat Kakkar wrote:
Hi All!I am builiding a firewall appliance based on CentOS. I am using CentOS as it is with some packages removed and some configuration done to security harden the appliance. Over and above this I will be installing Apache Web Server and Tomcat to run my web application which will give a web interface to configure the iptables in the appliance. There is no development done in iptables. It is used as available in its latest version online. As Tomcat will be running as non-root so it cant actually write the iptables rule. For writing iptables rules I will be using C++ executables with SUID bit set.Once this will be done, I am planning to Commercialise it. Am I allowed to do so without revealing my web application code and the C++ executable code (for iptables)? I know all the CentOS packages, etc. might fall in GPL and as a result I should be supplying source code of all the packages in CentOS.
What else is expected from me? Thanks.
You should really engage a corporate lawyer who can review CentOS's licenses/trademarks and advise your company on how to proceed. Anyone here providing advice is just that; Advice.
-
Akshat Kakkar -
Digimer -
Gordon Messmer -
Markku Kolkka