SourceForge Suspends Independent Project Mirroring 124
vivaoporto writes: In a reversal motivated by community concerns (like the high profile outcry over the distribution of an ads-enabled installer for GIMP and the accusation by Fyodor of the hijacking of the nmap SourceForge project), SourceForge has discontinued third-party bundling of mirrored content.
Along with that, as of June 18th, SourceForge started "removing SourceForge-maintained mirrored projects" and engaging their "newly-formed Community Panel to discuss site features and program policies including a redesigned mirror program." Of the 295 mirrored projects, they removed all that were "not co-maintained with one or more of the original developers, except where the upstream site has been discontinued." For those wanting to reach SourceForge for some constructive feedback, they point to the recently-established Community Voice forum. Note: SourceForge and Slashdot share a corporate overlord.
Along with that, as of June 18th, SourceForge started "removing SourceForge-maintained mirrored projects" and engaging their "newly-formed Community Panel to discuss site features and program policies including a redesigned mirror program." Of the 295 mirrored projects, they removed all that were "not co-maintained with one or more of the original developers, except where the upstream site has been discontinued." For those wanting to reach SourceForge for some constructive feedback, they point to the recently-established Community Voice forum. Note: SourceForge and Slashdot share a corporate overlord.
Meh (Score:5, Insightful)
Re:Meh (Score:5, Interesting)
That's what the PHBs who order these kind of changes (often so they can look like they're doing something) never think about. When you've done something to break the trust of a community, no matter how on the decline said community may be, it's very hard to repair the damage to your reputation afterward. Slashdot Beta would have been a worse mistake if they hadn't had the "&nobeta=1" escape clause, but fortunately that meant they only went half way before the community pushed back. (And I still think the "text over images" design meme is stupid. Just look at this abomination of web design. [newsradioklbj.com])
How many of you out there are still avoiding the use of FTDI's USB serial chips? And how many of you instantly wrote them off and gave them the "unperson" treatment?
Re: (Score:2)
The difference is that Sony is a mass consumer brand with a great deal of casual interest, with the bad thing pretty tangential to the general interest in the affected product.
Sourceforge's target demographic is narrower and what they did is more core to the concerns of potential users. Combine with the reality that the sourceforge platform just isn't that interesting anymore (there remain some things they do well enough, but other candidates are just as good and sourceforge has had a bad habit of changing
Re: (Score:2)
I'm not sure which Sony scandal you're talking about.
The PS3 alternate boot thing when it was sold with the feature and then had the feature stolen was pretty tangential for most people. The Windows rootkits on normal Redbook audio CDs was not an inconsequential thing.
Creating and then killing UMD rather than using MiniDisc or SD cards or downloads for PSP games was pretty tangential to the core purpose of the product. Using MS Pro Duo cards rather than SD for saving was too, for that matter. Putting a root
Re: (Score:2)
Windows rootkits *shouldn't* have been an inconsequential thing, but it was in the mind of the mass market. They got CDs, they put them in things and usually not a computer. Even when they put them in a computer, most probably had no idea what ever happened, or made no connection with the impact of opportunistic malware and that rootkit. Most people have no idea what their computer does and when it goes off the rails they don't make meaningful correlations to the causes of their grief (some think it's no
Re: (Score:2)
Why were you still using Sourceforge even before Dice bought it? It was a ghost town even then.
Re: (Score:1)
Many, many years ago, Sourceforge used to be not bad (or even good), plus until some years ago there were no good alternatives - then, some years ago (especially after DICE bought it), Sourceforge decided to make money with the worst possible way (especially since it was against the "spirit" of many/most projects/developers hosted there): by fraud (sure, i am bad with my English, but in Greek i would had call it... "fraud", plus -from the first definition of a dictionary [reference.com]- i quote: "deceit, trickery, sharp p
Re: (Score:3)
Re: (Score:2)
No, no, no. This is their new program to vet developers so that we users can easily tell which projects will sell us out.
Re: (Score:3)
just die already (Score:4, Insightful)
no one cares about you, and your download pages full of ads and big bright green fake download buttons. The only thing you can do that would be of any value, is something akin to the old Walnut Creek FTP site.
Otherwise, fuck off
Re: (Score:2)
And remember when the old Walnut Creek FTP was acquired by Digital River, who shortly thereafter nuked all the non-paying archives with absolutely no notice??
The DOOM archive was saved because I'd found some financial statements that Digital River had accidentally left accessible, and judging by the state of their profits, I smelled trouble and predicted that the free FTP would very soon go away. Fortunately the DOOM archive maintainer believed me, and mirrored our stuff elsewhere.
Other archives were not so
Re: (Score:2)
"The DOOM archive was saved"
If you rely on a 3rd party to maintain the _only_ copy of your work then you're a fucking retard who probably deserves to lose your shit
(and please tell me your projects so I know to avoid them. They're clearly not going to get long-term support)
Seriously. it's a total facepalm if XYZ site (or website) goes away and the data that was on it isn't mirrored somewhere else (or isn't simply a mirror of your private, backed-up master server)
Re: (Score:2)
This was 2001. At the time there weren't all that many options in free FTP hosts, let alone with decent bandwidth. Walnut Creek's FTP.CDROM.COM had been THE main archive host for the whole world for a decade, and a lot of scenes depended on it. Mirrors that could handle its level of traffic were rare to nonexistent, and often limited to university use. Bandwidth/hosting was still expensive and even our puny 4GB archive was still a LOT of data (IIRC total data was about 300GB). So yeah, single point of failu
Re: (Score:2)
In 2001 I was operating mirrors of several sites and had the mirror scripts set to not delete things if the master "went away", following incidents in 1994
More importantly the ftp sites themselves were supposed to be publicly accessable mirrors of archives of software collections - the point being that there were master copies "somewhere".
In 1997-1999 there had already been a number of instances of script kiddies wiping out ISP webservers (and their disk-based "backups"), which underscored the importance of
Re: (Score:2, Funny)
Re: (Score:3)
I know! We can build something and host the source on Sourceforge!
Re:This is Slashdot's first article on the topic.. (Score:4, Insightful)
Not sure if you're livving up to your username or what, but that's not true.
http://tech.slashdot.org/story/15/06/01/1241231/sourceforge-and-gimp-updated/ [slashdot.org]
Dice, SF, and slashdot genuinely fuck up frequently enough that we can do quite well without the histrionics and bogus accusations.
Re: (Score:3, Informative)
Uh, do you mean aside from the two other Slashdot articles linked in the summary?
Re: (Score:1)
By my count they are on their 87th chance. I have seen pissed at every change, even some that were imagined. I have yet to actually notice anyone leaving that said they were going to. I am sure some have - I do visit Soylent too, but I have not noticed any that do not also post here or they must use different IDs over there.
Re: (Score:2)
However, at this point, SourceForge has burned whatever trust it ever had. Soon the only people left are those gullible enough to believe SourceForge.
Something this face palm worthy can only be accomplished by a manager or
Kickstarter campaign to fix the overlord problem? (Score:5, Insightful)
>> SourceForge and Slashdot share a corporate overlord.
How about a Kickstarter campaign to fix our current "corporate overlord" problem?
Re: (Score:1)
Interesting. How much do you think Slashdot is worth?
I'm tired of them "curating" the user experience...
Re:Kickstarter campaign to fix the overlord proble (Score:5, Informative)
just move to https://www.soylentnews.org/ [soylentnews.org] clon...
done... no kickstarted neeeded
Re: Kickstarter campaign to fix the overlord probl (Score:1)
Re:Kickstarter campaign to fix the overlord proble (Score:5, Interesting)
I have often wondered about this myself. Is Slashdot worth more to its users that it is to its corporate masters? Is there some sum of money that unsatisfied Slashdot users could scrape together, perhaps over weeks and months, contributing some petty sum to some online swear jar whenever they encounter a petty annoyance, that would eventually accumulate into something that Dice would have to take seriously?
The thing is, from a revenue perspective, I'm not sure Slashdot is worth anything at all. There's no "there" there--its value is almost entirely in its network of engaged commenters. I'm pretty sure 9x% of the people who visit Slashdot use ad blockers, and even if you somehow found a way to sneak ads past the blockers, that would just cause those people to exodus anyway. So I guess ideally Slashdot would have to be run as sort of a public service, rather than as a money-maker. I figured Dice bought Slashdot and SourceForge to drive traffic to their job site, sort of as a loss-leader, goodwill gesture, look-at-us-we-totally-get-you-guys, please-consider-us-for-your-next-job-search sort of thing. But given how they're seemingly burning the goodwill candle at both ends by pushing through unpopular measure after unpopular measure, I have to admit I can't figure out what their real strategy is.
Then again, how much could Slashdot cost to run? It's just a forum, for chissakes, right?
Then again again, if it's just a forum, why hasn't everybody moved on, en masse, to one of the clones of Slashdot that disgruntled Slashdotters have started in recent years? Because it's all about the network, I guess, and two halves of a big network aren't even half as good as the original network.
Beats me. I hope somebody figures something out before too long, though.
Re: (Score:2)
Then again, how much could Slashdot cost to run? It's just a forum, for chissakes, right?
It's a forum that gets Slashdotted all day, every day.
I know a guy who wrote about some of his research, and it was Slashdotted. He analyzed the traffic pattern, and though I can't find that analysis any more, he estimated the budget it'd take to survive the story's front-page run without downtime. It was not a small number.
Extrapolate that to running all day, every day, and serving more than a simple static HTML page, and even with the improvements in technology, we're still going to be dealing in numbers
Re: (Score:2, Insightful)
/. doesn't demand nearly the traffic it used to. Likewise, it doesn't send as much traffic as it used to. So, it's no surprise kids these days don't even know what 'slashdotting' is!
Re: (Score:2)
They seem to know the Reddit hug o' death just fine.
Re: (Score:2)
So I guess ideally Slashdot would have to be run as sort of a public service, rather than as a money-maker. I figured Dice bought Slashdot and SourceForge to drive traffic to their job site, sort of as a loss-leader, goodwill gesture, look-at-us-we-totally-get-you-guys, please-consider-us-for-your-next-job-search sort of thing. But given how they're seemingly burning the goodwill candle at both ends by pushing through unpopular measure after unpopular measure, I have to admit I can't figure out what their real strategy is.
Maybe it's not an evil plan by Dice? I suspect it is some newly-appointed, over-eager IT dude that tries to "improve" the website and make it more 2.0, and perhaps also make some tasks easier for them (site management, statistics). The guy hasn't given up yet ;) but he is learning to make smaller steps.
Then again, how much could Slashdot cost to run? It's just a forum, for chissakes, right?
Then again again, if it's just a forum, why hasn't everybody moved on, en masse, to one of the clones of Slashdot that disgruntled Slashdotters have started in recent years?
That would require changing bookmarks, and habits, both of which is hard! *whine*
By the way, that soylentnews site is looking for someone to make their page (slashcode) more web 2.0. How ironic. [soylentnews.org]
Re: (Score:1)
It seems that one could possibly convince people to invest in purchasing this site and allowing it to be run by a community oversight committee of sorts though the funding parties would certainly want some control and veto power (as well as explicit ownership) and could probably run nothing but text based ads assuming we cheap bastards actually clicked on the ones that we found interesting. I suspect there would be some sort of no-compete but a jobs-offering (that is not abused and is realistic) alongside t
Re: (Score:2)
The logic sometimes isn't profit. Sometimes the logic is being able to show a loss for tax purposes. See also "Hollywood accounting".
Re: (Score:2)
And then what? Slashdot needs money on a regular basis.
Slashdot would need a way of getting enough people to pay to sustain itself, and that seems tricky. The audience is tech savvy with adblock and other places like reddit offer more value and still have trouble earning money.
Creditability lost (Score:5, Insightful)
Just stop abusing "good will" projects (Score:5, Insightful)
SourceForge should never have been considered a potential revenue stream... it should have been preserved as a community service project that enhances your standing in relation to those parts of Dice that do generate revenue.
Corporate execs are far too quick to forget that.
Lots of tech companies subsidize community service projects - this is great, but abusing these efforts, and trying to make a quick buck off them is a quick way to damage your reputation in the tech world. Building trust and admiration through such projects takes time and effort, and can be very rewarding to a company's bottom line, but when you betray the trust, it can quickly become a poison that no amount of time can heal.
Dice, you've gained a lot of people who will never forget this. Certainly, many of them were not exactly fans to begin with, but they will be vociferous and their influence WILL impact your bottom line. Trying to make that quick buck will cost you far more in the long run. I certainly hope whoever was behind this "idea" has been sent packing. The road to rebuilding your reputation will be a long and painful one.
Re: (Score:2)
Dice? Reputation? Please! Wall Street whores do business with each other out of professional courtesy, fully aware of each others' "reputation".
SourceForge was just trying to help app other apps (Score:1, Funny)
Apps!
"opt-in" = sodomy (Score:3)
" With that in mind, SourceForge pledges to present third-party offers only with the projects that explicitly opted-in to that program."
These days, whenever I see a company or organization use the phrase "opt-in", I immediately tune out anything else that is said, and decide I want nothing more to do with that company or organization.
Re: (Score:3)
Surprise opt-in!
Re: (Score:2)
What, you prefer opt-out?
Once lost, trust is very expensive to win back. (Score:3)
Good luck, it is going to take a long time and a lot of effort to win back the trust the SF once had.
Re: (Score:2)
As long as were having a Dice hatefest, (Score:1)
clicked on a job ad just for shits and grins, linked to Randstad USA. Next day i get an e mail from Randstad...the only connection between my e mail address and Randstad is Slashdot...thanks for the spam assholes.
Re: (Score:1)
That was... That was beautiful! I am not sure why you did not get more bites. It is truly well done. Minimal effort, done. Clear and concise? Done. Quick and barbed? Yes, ma'am. It was a classic that was seen by nobody. I am sorry for your loss but you can truly tell tales of the one that got away - AND be correct.
Also, you are not really a female. No female is capable of good quick wit like that.
Sure, Dice, sure. (Score:2)
In a reversal motivated by community concerns
Bullshit. Dice doesn't care about any "community". It was a reversal motivated by the fact that they got caught serving crapware and people spread the info far-and-wide. Otherwise, they would have kept on serving the crapware unabated had they been able to contain the PR disaster.
Re: (Score:2)
I liked how they characterized it as "a short-run test of third-party offers on five of the mirrored projects." Do they really think that anyone is dumb enough to believe that this was intended to just be temporary trial?
As a wise man once said... (Score:3)
"It takes 20 years to build a reputation and five minutes to ruin it. If you think about that, you'll do things differently."
- Warren Buffett
Re: (Score:2)
Dice has never had that good of a reputation anyway so they probably don't see any big loss.
Re: (Score:2)
I was thinking more of SourceForge itself, though it happens to be a Dice property. Previously, I used to trust it as a source of binaries that I might download and run. Currently, I don't. I may trust it again one day, but it will take a while.
Re: (Score:2)
I'd never trust it as long as it's part of "Dice Holdings".
Re: (Score:1)
Well, nutcase is in your name. Not that I trust them but I am not saying that it is impossible for me to trust them in the future. Something, I should check, that I was playing with (I found it from a link here on this site) was downloaded from another site but it was a wrapped of sorts. It installed some software and then downloaded some stuff from SF during the install. I watched and let it run and then checked everything. I probably should have used the sandbox in Acronis. I also should check to see what
trust matters (Score:2)
For me, trust in the SourceForge site is still not getting repaired until software like Filezilla can be safely downloaded with no fear of bundled "offered software"
I pity the fool that makes a recommendation to a client or vendor to use FileZilla.
For an illustration of how trust matters, go to the SourceForge site and compare customer comments of FileZilla vs WinSCP
Dice Spin (Score:2)
Let it rot (Score:2, Insightful)
Just move projects to GitHub, and let Source Forge rot.
Re: (Score:2)
Everything needs to be more broadly mirrored, so there's not a single point of failure for the source community. One or two big hubs may be convenient but if that one or two go bad, then what?
Good job editors! (Score:2)
I'm really happy (not surprised, as I expect unbiased content throughout /. ) that this article's tone is much more in line with what neutral journalism deserves. I am also glad about the topic itself: that SF has decided to do it all on fair'er terms - they seem to be going in the right direction on this particular mirror subject.
It's still a shame for the ads on all other things SF, besides the mirrors. We all dread ads, and only people who chose such a business model can make sense of things like intrusi
Re: (Score:1)
Ads? I see the option to turn them off but I am like, "Umm... Thanks? I have that taken care of already." The only times I have used that feature it was when it was an option in the paid service and I did not feel right just remaining a paid member so the way to reduce my time (in other words, actually let them benefit from my donation/fee) was to disable ads. I think I may have drunkly spent a bit on this. It was some time ago. It may have been Fark that I "donated" a few hundred dollars to. It gets worse.
Re: (Score:2)
Re: (Score:2)
Re: (Score:1)
Heh... You do not want to know what they do to your groceries. They will leave the package the same size but decrease the weight. Packages are all designed (pretty much all) as a relative to the perfect number. Water is added to your meat. The sprinklers on the produce are not just there to keep the vegetables fresh. Your meat is probably dyed - ground burger should, probably, not be red. Obviously you may shop at better places but I am sure you are still getting fucked behind the scenes with everything the
opt-in will be the default (Score:2)
Given this kind of "spin" on the problem, I'm sure the client agreements with Slashdot will include "opt-in" as the default setting on every agreement.
This is very disturbing, I thought... (Score:2)
Re: (Score:1)
sigh, I wondered why everything looked fucked up when I loaded the site :(
Re: (Score:1)
There was a short outage and then the CHANGE occurred. I thought it was one of the script/ad blocking add-ons but I was wrong. I refreshed and refreshed and hoped my eyes were wrong. They were not. I found the comment section links and all was good again.
Re: (Score:1)
Yep, if you don't cut out the Dice.com cancerous tumor then shit like this will keep happening. They'll just try to be more sneaky about it the next time around.
Re: (Score:2)
I'm sure they are and they can go choke on a bucket of dicks.
Re: (Score:2)
Re: (Score:2)
Re: (Score:1)
-1 ? Educate yourselves moderators. Only projects that don't opt-in are going to be malware free.
FileZilla made their position as having opted-in very clear.
WinSCP.
Re: (Score:1, Informative)