NYC Councilman (and Open Source Developer) Submits Bill Establishing Open Source 105
NewYorkCountryLawyer (912032) writes "New York City Council Member Ben Kallos (KallosEsq), who also happens to be a Free and Open Source Software (FOSS) developer, just introduced legislation to mandate a government preference for FOSS and creating a Civic Commons website to facilitate collaborative purchasing of software. He argues that NYC could save millions of dollars with the Free and Open Source Software Preferences Act 2014, pointing out that the city currently has a $67 million Microsoft ELA. Kallos said: 'It is time for government to modernize and start appreciating the same cost savings as everyone else.'"
Some Reasonable Arguments (Score:4, Informative)
From the proposed amendment:
I agree that we should use the right tool for the right job, but why should that exclude FOSS?
Re:I'd be satisfied with... (Score:4, Informative)
About the only way to get open standards is to use FOSS. There are also benefits that will spur the local economy as proven with the recent story on Munich. Plenty of FOSS projects are best of class. It is not just about up front costs or installation and configuration. What are the ongoing support costs? For a given number of servers, it usually means more Windows admins that Unix/Linux admins. Unix/Linux can do more on given hardware than Windows. When Microsoft transitioned Hotmail from BSD to Windows Server, they had to more than double the amount of servers to achieve the same performance.
Plenty of Government uses FOSS- http://leeunderwood.org/linux/... [leeunderwood.org]
There are even more undocumented cases, but I am not at liberty to divulge that information.
Re:Call it the hartbleed act (Score:4, Informative)
Microsoft then fixed this by not allowing IIS to accept the dot-dot-backslash business. But you could use percent-sign-hex characters to represent the dot-dot-backslash. Microsoft then fixed that in IIS, but the filesystem would still accept the percent-hex-code characters. So you could double-escape them to get the filesystem to walk you to the CMD.EXE. Eventually they got this right and it was fixed. But there were many other holes. And who's stupid idea was it to run a server process, basically with root privileges?
I could go on. Even recently there was a major IE vulnerability that affected current and past versions.
Heartbleed was one instance of a lapse in security.