The Internet Relies on People Working for Free

Who should be responsible for maintaining and troubleshooting open-source projects? From a report: When you buy a product like Philips Hue's smart lights or an iPhone, you probably assume the people who wrote their code are being paid. While that's true for those who directly author a product's software, virtually every tech company also relies on thousands of bits of free code, made available through "open-source" projects on sites like GitHub and GitLab. Often these developers are happy to work for free. Writing open-source software allows them to sharpen their skills, gain perspectives from the community, or simply help the industry by making innovations available at no cost. According to Google, which maintains hundreds of open-source projects, open source "enables and encourages collaboration and the development of technology, solving real-world problems."

But when software used by millions of people is maintained by a community of people, or a single person, all on a volunteer basis, sometimes things can go horribly wrong. The catastrophic Heartbleed bug of 2014, which compromised the security of hundreds of millions of sites, was caused by a problem in an open-source library called OpenSSL, which relied on a single full-time developer not making a mistake as they updated and changed that code, used by millions. Other times, developers grow bored and abandon their projects, which can be breached while they aren't paying attention. It's hard to demand that programmers who are working for free troubleshoot problems or continue to maintain software that they've lost interest in for whatever reason -- though some companies certainly try. Not adequately maintaining these projects, on the other hand, makes the entire tech ecosystem weaker. So some open-source programmers are asking companies to pay, not for their code, but for their support services. Daniel Stenberg is one of those programmers. He created cURL, one of the world's most popular open-source projects.

Re:

[kwelch007]

Isn't that basically what RedHat and Canonical do?

Re:

[PeeAitchPee]

And MySQL and a host of other companies, for about as long as the Internet has been around. This is clickbait victimhood at its lowest.

Re:

[Keith Henson]

Something missed is that people write open-source software for status (recognition, fame, esteem, etc.)

There are good evolutionary reasons we value status, sometimes over money.

Federal Judges are an example. They typically give up half or more of their income as a lawyer for the higher status of being a Federal Judge.

Argument for a Basic Income etc.

[Paul Fernhout]

The issue here is not that programmers don't want to work on infrastructure or FOSS. Many do. The challenge is that they can't afford to do it in a society that emphasizes financial exchange transactions. So, a Basic Income would make it more feasible for more software developers to work on truly important things like high-quality FOSS infrastructure and also other FOSS software that supports other laudable goals which may not be so easy to monetize for whatever reason. This is a situation where other types

Re:

[110010001000]

Not sure what you are talking about. A lot of programmers get paid to work on infrastructure and FOSS. Are you guys from 1992?

Re:

[Paul Fernhout]

LOL. I'm talking about the subject of this article: that the internet relies on people working for free and that many of them get burned out doing that given at the same time they need to maintain paying jobs on different software. But that is also true in more areas of our culture than software infrastructure. There may be thousands of programmers getting paid to work on FOSS infrastructure at companies like RedHat and so on -- but that considering how billions of people now rely on that infrastructure (an

Re:

[LazarusQLong]

are you an idiot? Where does this 'free money' you want come from? Where? Who pays?

Re:

[Paul Fernhout]

Where does the "free money" come from for roads, bridges, defense, libraries, social security, government research, and so on? One way is that a community decides that some appropriate level of taxation or other means of raising revenue (tariffs, fees, printing money, etc.) is worth the benefits to society.

Of course, to avoid money, one can also strengthen the subsistence economy (better 3d printers, better solar panels, better gardening robots) or strengthen the gift economy (more people giving other thing

Re:

[Shotgun]

Include various bugs, vulns, and confusing configuration options in your FOSS.

That's a tight rope to walk. Try to milk it to much, and you'll see your project forked.

1998 called, and they want their FUD back

[yelvington]

Guy writing for free on a free blogging site says you shouldn't trust free software.

Re:

[postbigbang]

The disinformation trolls are everywhere these days. They choose a rubric (perhaps financed as you imply), then shake the tree.

Re:

[leonbev]

1998 is apparently calling back again, and delivering "Microsoft thinks that Linux is evil" FUD.

Modern day Microsoft doesn't give a shit what OS you use, as long as it's hosted on Azure or using API calls to other Microsoft web services.

Re:

[randallman]

Yea. I'm sure they would gladly hand over their corporate lock-in for Exchange/Server/Office/Windows /s One thing is clear. Microsoft, like most other companies, only plays nice when they have to. There are many examples like I.E 6, doc-> ooxml, where they try really hard for vendor lock-in, eschewing standards and building in MS only features and formats. Then they "play nice" when they lose their grip. Internet Explorer is probably the latest example, coming full circle. Browser based apps and op

Re:1998 called, and they want their FUD back

[Owen Williams ⚡]

Hello! Writer here! I'm a paid columnist for Medium (not FT, just a weekly thing) that's compensated for my work–they actually pay well above market and are very thoughtful about how they treat people who write for them. It's fun to assume, but... yeah.

Re: 1998 called, and they want their FUD back

[Way Smarter Than You]

Congrats on making money with a pen. Not easy these days. In regards to your article... yes heart bleed was bad but that implies commercial software written by welll compensated FTE employees is better. If Windows and MacOS were better written there'd be no concept of malware. We'd only patch OS's to add new features, improve perform and reduce memory consumption. Never for security bugs. If I had to get my life on the next zero day coming from MS/Apple or an equally critical OS project... I would not

Re:

[110010001000]

No, you are paid $200 to write a blog on a crappy website. If you don't deliver clicks they will stop paying you $200.

Re:

[thegarbz]

So you counter the OP's statement that he gets paid by saying he gets paid? You're almost mentally retarded enough to run for president.

Re:

[Cederic]

I didn't interpret his article as suggesting that you shouldn't trust free software.

It was drawing attention to the inherent conflicts in extensively using a resource for which there are no guarantees of continued maintenance and support, limited financial incentives to do so, and a level of contention regarding whether those financial incentives should even exist.

Seemed reasonable to me.

Re:Misleading Framing...

[Austerity Empowers]

Most people I know will design some new software from scratch for free, and will get it to the point where it does everything they want it to do. Then leave it alone and move on to NEXT BIG THING.

Support usually costs money. People don't like to maintain stuff for free, it's boring, requires fitting in to someone else's schedule and you won't get any of the credit, even if its your work alone that's making the pile of code useful to anyone else at all. Even if you are basically redesigning that thing in pieces, because it has a lot of problems.

Corporations are usually well suited to the pay for support model. They're actually not good at having things designed from scratch, for a lot of reasons. The difficulty is finding someone to support said pile of code who isn't in the company (because the company doesn't "own" it, they are reluctant to pay an employee to do it, even if it means paying a freelancer MORE, because...capitalism? Who knows.)

Re:

[Kjella]

The difficulty is finding someone to support said pile of code who isn't in the company (because the company doesn't "own" it, they are reluctant to pay an employee to do it, even if it means paying a freelancer MORE, because...capitalism? Who knows.)

Probably because a freelancer has more incentive to keep the software generic and useful to other people and build a community around it to attract more gigs. I expect that if you put an employee to maintain it with no skin in the game outside the company it'll pretty soon go from an open source project to effectively custom internal code. It's so easy to take shortcuts that works for you but is mangling functionality you don't use or is relying on assumptions that won't be true for everyone else or has dep

Re: Misleading Framing...

[reanjr]

Working for free is much better. Nothing stopping you from writing the code you want. Working for someone, you're pretty much always forced to make trade-offs in quality or design. Most people getting paid to code don't even control which projects they work on, much less how they go about it.

Re: Misleading Framing...

[Way Smarter Than You]

Vampires? Grow the fuck up. If you don't want your code getting used for free by some company then don't release the code or put a non-commercial-use-only license on it. Enough with the emotional outbursts from unpaid OS developers whining they don't get paid for volunteer work no one asked them to do.

Re:

[Shotgun]

If I put an old appliance out at the road and hang a "Free" sign on it, and you pick it up, you don't owe me anything. Even if you value it, you don't owe me anything.

Re:

[LazarusQLong]

exactly. All these idiots that scream "everything I want should be free, WAAAAAAAA, WAAAAAAAA, WAAAAAAAA" sicken me.

Re:

[dissy]

Hey, if you use it, and make money from it, that means you value it. So, whether I started for free or not, you owe me now.

I like that. My reply here, you have read it, and that means you value it. So, whether I started for free or not, you owe me now!

Re:

[Joe Bill Schirtzinger]

Indeed. Now you understand why you owe every teacher you ever learned anything from a great, huge debt.

Re:

[LazarusQLong]

no, no I don't. I never signed any contract with you so if I find your code that YOU released into the world and I can make money off of it, I owe you NOTHING.

Now, ethically, I SHOULD share some of me income from your code with you, but legally, I owe you NOT ONE THIN DIME.

Re:

[Joe Bill Schirtzinger]

Oh, but you did sign a social contract with me. If I released my code into the wild for free because I thought there was no market for it, and there was not at the time I released it, but there is NOW, that changes the parameters of the social contract. Whereas before what I had was not likely to be valued, now it is. Should I have never have written said code, you would never have been given the opportunity to make your "thin cent". In the way that you owe your parents your life for birthing you, you owe m

facepalm

[PeeAitchPee]

We get it . . . open source devs are the new victims, voluntarily exploited just like Uber and Lyft drivers. Quick, blame the nameless global multinationals on the Twitter! Outrage! Outrage!

Seriously, how does this shit even make Slashdot?

Re:

[boneglorious]

Seems like you're really overreacting to someone mentioning a possible issue.

Re: facepalm

[reanjr]

What's the issue? This is how shit has been since the 70s, at least. There was a weird 80s/90s era blip from MS that made it appear for a moment like it might turn into something more formalized and professional, but it never happened.

Facepalm On The Other Hand

[dryriver]

Wasn't it big COMPANIES who SHRIECKED "we can't make money because of Piracy, we can't get compensated for our work.. bla bla bla..." throughout the 1990s and 2000s? And now its somehow JUST FINE that thousands of open source contributors to big, hugely profitable commercial products go without financial compensation? What kind of world does that create? The Companies are FULLY ENTITLED to compensation and can SCREAM about it all day. People who write the clever code that ALLOWS THEIR PRODUCTS TO EXIST have

Re:

[PeeAitchPee]

The companies you're screaming about likely use a license that reserved their rights. The open source devs whose code is being re-used likely did not. Anyone (big companies to individual coders) can pick the software license most appropriate for their own situation. This is likely THE most fundamental aspect of putting code on the Internet for everyone to use (open source with no restrictions versus otherwise) that's as old as the modern Internet itself, so I can't tell if you're deliberating ignoring th

Re: Facepalm On The Other Hand

[reanjr]

If you are a coder who has avoided learning the basics of copyright law, there's no help for you.

Re:

[swillden]

People who write the clever code that ALLOWS THEIR PRODUCTS TO EXIST have no claim to any sort of compensation???

(I know your post is tongue in cheek, but it deserves a serious response for anyone who might take it seriously.)

The truth is that most open source developers today do get paid. There's plenty of free work being donated to a multitude of tiny projects, most of them used only by their authors, but all of the big projects are developed primarily by people who are paid for their work. To take the most prominent example, look at the the stats [lwn.net] for a recent Linux kernel release. Only 3.9% of lines were writt

Re:

[dissy]

Seems even simpler than all that.

I take offence at these people for denying me my right to choose $0 as my price.

They kind of are in a lot of ways

[rsilvergun]

A lot of OSS devs are doing it to get a GIT hub account they can use for job interviews. Sort of like an Artists portfolio. But in the old days you got paid to build that portfolio.

Worse, I've had friends that have had "Job Interviews" where they're called in to solve a problem as a "test" and it's very clearly the employer trying to get free consulting services. A few of them wrote the code for free without getting a job when they were young and dumb and didn't know better. I gather since India took ov

Re: They kind of are in a lot of ways

[reanjr]

My GitHub account is mostly shit I got paid to write. Not sure why you think people aren't getting paid for that stuff.

Now, if your GitHub account is filled with half projects including a bunch of framework boilerplate that doesn't do anything useful, you probably should not get paid for that. But that's exactly what the "portfolios" you're talking about are.

Re:They kind of are in a lot of ways

[swillden]

Worse, I've had friends that have had "Job Interviews" where they're called in to solve a problem as a "test" and it's very clearly the employer trying to get free consulting services.

I don't believe your friends. I'm not saying they're lying, just wrong.

Any problem that could be solved in the course of a job interview is too trivial to be worth paying for, and any company that would use such code is completely stupid. If they are so completely lacking in engineering talent, what are they going to do if the code breaks, or doesn't work exactly the way they want?

What I believe is common is for interviewers to ask for solutions to real problems that they have faced in their work. There are several advantages to using such real problems, rather than the typical contrived ones, among them that the interviewer has spent weeks, or months, thinking about the problem and potential solutions, and is therefore well-positioned to evaluate the advantages and disadvantages of the candidate's solution -- recognizing that the candidate had very little time. The biggest disadvantage is that real problems are often too complex to even explain in the course of an interview, much less have time for the candidate to generate and code a solution. Often they can be suitably simplified without losing their connection to reality, though.

It wasn't in interview

[rsilvergun]

he was brought in to do a bit of "consulting" to "prove" he was a good fit for the job. Young, dumb, excited.

I'm not saying it was a lot of work, but it's a quick and dirty way for a small business to get something that's just a little broken on their website fixed.

What's the difference ?

[mrlinux11]

Closed Commercial software is abandoned all the time and there have been huge security issues. Open/Closed/Free/Commercial are all the same, the big difference I see is that if the open source project is abandoned by the developers, someone can at least pick it up and continue, not so much for abandoned Closed software

Re:What's the difference ?

[alvinrod]

That stood out to me as well. There are a lot of other bad assumptions made by the article as well. Typically when I've contributed code to an open source project it's because I wanted the application to be able to solve some need for me, not because I wanted to make something for free that the rest of the community could benefit from. Since I get value out of it (and probably more than my time contributed back is worth), I don't really have a problem if a few other people get some fee value out of my contribution in turn.

Slashdot relies on "people working for free" too

[PeeAitchPee]

Slashdot runs on Linux [netcraft.com] . . . how dare they exploit the freely contributed labor of others to run a for-profit website without compensating the devs?

Isn't that what Redhat's all about?

[Calvin-X]

Or are we talking more of a pandora model, where a portion of the proceeds for where you are drawing support gets paid back to those devs who are providing support?

Always been that way

[jwhyche]

First the UUCP then the Internet have always depended on some one working for free. Back in the '80 I was routing messages down stream on my Amiga using UUCP. A service I provided for free on software written and provided for free.

The current Internet is no exception. Most of the software that is doing the real work was written for free. I imagine it will always be that way. Someone will do the work to keep the system working.

And you can not earn a living doing OpenSource

[ReneR]

been there, done that, sucks to do base Open Source infrastructure code stuff :-/ https://www.youtube.com/watch?... [youtube.com]

Re: And you can not earn a living doing OpenSource

[reanjr]

I earn a living writing predominantly open source software. Most every project I work on is thin proprietary layer on top of open source modules that solve the fundamental problems I need solved. My employer doesn't care if I open source work as long as security is addressed.

Re:

[110010001000]

Really? Most of my work is done using Open Source stuff and I get paid fine.

They don't work for free!

[BAReFO0t]

The vast majority is employed, and it is part of their job! E.g. because they use it.

And the rest also do it, because they get somethig from it. Like tme submitting a patch in my free time, that fixes what bugged my on my home server.

Work is paid. In some direct or indirect way.
The RESULT of the work, is free!
And that is exactly how it should be!

Want more money? Do more work! This is not the Content Mafia! Nor stock trading!

Hell, I do not evem want any money! Because I do not want to work more! I want to li

s/tme/me; s/my on my/me on my/.

[BAReFO0t]

Dear Slashdot, please add a preview on mobile.

Oh, and a preferences page too.

And switch to UTF-8. It has been over 25 years!

Discogs / Wikipedia are perfect examples of this

[2TecTom]

... and not just the Internet, but a lot of other work too. It's amazing how much time people willingly and unwillingly volunteer. It's funny because if you asked for money, most people wouldn't give you any but they will give others their time. It's bad because no matter how much time you give, you still have no say in how the project is administered. It's never democratic and there's never any profit sharing, the people at the top take all the cream and yet everyone tells them how great they are!

So many people get easily rich by taking a lot off the top and not paying back the many people who each gave up so much. It's basically modern wage slavery, pay as little as possible in order to profit as much as possible. ;~(

Then don't do it

[PeeAitchPee]

Back before Wikipedia was the serfdom it has become, and other big content platforms like Facebook, people that were subject matter experts would often (gasp) host their own websites. I know, crazy, right? But that's how we rolled, and the Internet was a place with a much better signal-to-noise ratio, and with a lot fewer ads too.

Remember -- participating on Wikipedia is completely voluntary, as is contributing to an open source project. No one puts a gun to anyone's head and MAKES them contribute. Ther

Re:

[2TecTom]

Back before Wikipedia was the serfdom it has become, and other big content platforms like Facebook, people that were subject matter experts would often (gasp) host their own websites. I know, crazy, right? But that's how we rolled, and the Internet was a place with a much better signal-to-noise ratio, and with a lot fewer ads too.

Remember -- participating on Wikipedia is completely voluntary, as is contributing to an open source project. No one puts a gun to anyone's head and MAKES them contribute. There is no coercion. So, while I agree that the behavior you describe happens, I see the comparison to "modern wage slavery" as a bit far-fetched. A lot of these contributors do it as a hobby, for example, and they very much enjoy the time they spend.

Wanna control what happens to the content you create? Pick the right license [choosealicense.com], and host in on your own site. All the tools are there -- in fact, they've never been more available and easy to find. There's nothing stopping you.

often it's not practical, like the rest of your argument, clearly, no, it's not really a choice, if you need to contribute in order to further larger goals, they kind of own a part of you

my point is that they take far more than their fair share, they really need to share more to get more ...

Postman

[Necron69]

We dumped Curl for Postman several years ago. WAY easier to use, and hey, their developers are paid. :)

- Necron69

Comment removed

[account_deleted]

Comment removed based on user account deletion

Re:

[lFaRptHjbZDI]

Not only that, but sometimes I scratch a personal itch by writing some software or modifying some code. It was work I was doing just for me. Afterwards, I might as well share it since maybe someone else has that same itch. No need to waste resources having everyone reinvent the wheel.

Nothing is for free

[Z80a]

But not all forms of compensation are monetary.
Sometimes the person might be seeking fame, or to build a portfolio to get a job later on, or in many, many cases, just for the fun of it.
For example, people that write emulators, in many cases do it for the fun of reverse engineering a closed system and the gratification that comes when the software starts to run better and better, until it gets to a point where everything runs, (including software he don't actually own that just happened to land on the harddr

Mostly right

[iampiti]

Not just the Internet but a lot of software in general relies on many open source components. Some of those are developed by people paid by companies some by volunteers.
One problem is that the state of such open source components is hard to assess and it's easy to believe everything is fine with just time-limited volunteers or a small number of paid coders. It takes a lot of time and effort to do things right but since the code is just available it's easy to take but no one wants to pay for maintenance and

Many engineers are paid to work on FOSS

[laird]

There certainly are many people working on FOSS projects as volunteer/hobby work, and that's awesome. But there are also thousands of engineers who are paid by their employers to work on FOSS projects because those projects are valuable to the employer. For example, numerous companies that utilize Linux pay their engineers to work on it, such as IBM, Google, Samsung and Microsoft as well as hundreds of smaller companies. https://www.zdnet.com/article/... [zdnet.com] . Don't think of FOSS as "hobby" software, think of i

Misleading arguments

[UnknowingFool]

which relied on a single full-time developer not making a mistake as they updated and changed that code, used by millions.

OpenSSL might have only 1 full time developer but it also has many part-time developers that lend their skills when needed. This does not take into account that the amount of work required. For example OpenSSL 1.0.2 has about 500,000 lines of code. Also the same criticism could be applied to closed source with the difference being that the public may not know how many developers or lines of code in closed source.

Not people. Kids.

[o_ferguson]

Young, idealistic people who are new to computers do most of the Open Source heavy lifting. It's only after someone exposes them to Bill Gate's Open Letter to Hobbyists that they start to question if it's better to be a capitalist fed than a member of the invisible academy.

I'm ok with this

[duke_cheetah2003]

The alternative is all the code that makes the internet work would be proprietary and locked down.

I think that's why the open source community does this. There is a payoff, it's just not in dollars or food.

They also just enjoy programming I think. I mean who would do such a thing for free if they hated it?

Bottom line, better think carefully about what you're asking for. If you want 'paid for' programming running the internet, better be prepared to not get the source code with it.

This current model works well. It may shaft some people, but I think ultimately we as a species win in the end. I think these selfless people who do all this work for free are the unsung heroes of our era.

OpenSSL was a bad example

[gmiller123456]

OpenSSL was a poor choice for an example. The entire SSL spec is more an example of a bunch of companies getting together with the goal of making something simple virtually impossible to implement for free. I remember when the spec was first made public, there were lots of questions as to why it was so overly complicated, and the spec witten in a way it was very difficult to understand. People who worked on it at Netscape said it was done intentionally, though didn't say why. Though I think it's pretty obvious, and few people would disagree, they were trying to lock out competitors. Had SSL followed similar paths like open source projects, we'd very likely have a much easier spec to work with and lots of open implementations.

Plenty of people are paid to develop FOSS software

[scourfish]

Companies that use open source software pay developers to develop and improve it, and also have to pay people to manage license compliance in large projects.

I thought large portions were paid for

[NotSoHeavyD3]

I.e. big evil tech companies like MS and google paying their employees to work on open source code while at work. In other words people not working for free

Re:

[110010001000]

They are. The writer is an idiot who doesn't know anything about the subject matter. That is why he writes for a blog.

So what's the alternative?

[Rick Schumann]

What's the alternative? Demand only paid employees write code? Sounds like yet another great way for some company like Microsoft to basically own all computing devices, and {insert software company here} having a de-facto monopoly on any application you might need, charging your thousands of dollars for it, basically pricing 99% of everyone out of the market for it. In a world where there's no FOSS and some company somewhere owns any piece of software you might want, we'd be back in the 1970's, where computers were only for scientists and big corporations, and any code you wrote would come with a mandatory royalties agreement from the company that owns the compiler you used. It would be a world like having the equivalent of the RIAA and MPAA and ASCAP taking control of anything anyone wrote. It would also have a stifling, chilling effect on creativity when it came to software. The current system may be flawed, but so are most other systems. I'd rather have it the way it is now, thank you very much, otherwise I'd be writing this on Windows and Internet Explorer, not Ubuntu and Firefox. ;-)

Downloads want to be free.

[Ostracus]

The Internet Relies on People Working for Free

Correct. *downloads from Piratebay* ;-)

Expanded conditions

[osage]

Not to mention the cases where the authors retire or are incapacitated. There is also the case of software that is not critical, but helpful to have and appreciably better than competing systems.

Single Open Source developer called “they&rd

[notdecnet]

‘virtually every tech company also relies on thousands of bits of free code, made available through "open-source" projects”’

There is no "open-source", that should be Open Source.

“an open-source library called OpenSSL, which relied on a single full-time developer not making a mistake as they updated and changed that code”

“they”, has slashdot been bitten by the PC bug? The developers name is Dr Robin Seggelmann. So unless he's decided to self-identify as 'a

As an open source dev...

[esme]

...I haven't written much code for free. I mostly wrote open source code because my employer wanted me to (or allowed me to) as part of my job.

I'm sure there are people writing code in their free time, completely unrelated to their jobs, but all the open source devs I know are getting paid, either by working for big orgs that pay them, or by working as consultants.

I can recall

[kilodelta]

That in the early days of System V Unix and Linux - we used to say once in a while you'd have to call someone and hear their mom say "Johnny, come inside there's someone needs support on that application you wrote."

title miss keyword

[KingBenny]

'voluntarily' or as the eloquent wannabes might try to say 'out of their own volition' ... huge difference , even in case where but "you don't HAVE TO" ...