Software Customer Bill of Rights 293
Cem Kaner of Badsoftware.com has written up a Software Customer Bill of Rights. Very appropriate considering our recent stories about Microsoft viruses, Dell's BIOS-clickwrap licensing agreement, etc.
Live up to marketing???? (Score:5, Interesting)
When has any product ever "lived" up to the marketing claims? If I expected everything I bought to live up to their claims, I'd be dissapointed with every bar of soap, every beer, and every Big Mac.
I agree with most of it... (Score:4, Interesting)
If I could have manufacturer's adopt one part of the consumers bill of rights, it would be to advertise with honesty. Do not sell me a software product which does not live up the advertising.
The one part I disagree with is the reverse engineering. Companies have a right to sell software and to ban people from reverse engineering it.
Corporate Goverment (Score:1, Interesting)
What about when Linux fails? (Score:1, Interesting)
Re:Interesting... (Score:4, Interesting)
It would be like if I purchased a VCR which did not work two months later, and after I went to have it fixed, the manufacturer decided to "add a feature" which sends them data about the VCR. It is BS.
Too much responsibility is bad for your economy (Score:5, Interesting)
I can see where this view is coming from, but seriously; the litigious culture that is developing in the USA (and therefore no doubt on this side of the pond before long) could have a grave impact on your economy.
You have to take a certain degree of responsibility for your own action. Otherwise, everybody will just be too scared to do anything, and every American will just stay in bed all day.
You NEED suppliers to be a viable business yourself; and in return those suppliers deserve a leniency from you as far as accountability goes.
In return you get leniency from your customers as far as your own liability goes.
As the owner of a small software business, I feel comfortable with the fact that whilst I cannot sue Microsoft's ass if something goes terribly wrong; neither can my customers sue my ass.
Swings and roundabout; 6 of one...
Great, but (Score:4, Interesting)
I wonder what would happen if 40,000 slashdotters mailed a copy of this to their respective congressferrets?
The only thing I would add is to see if there's any reasonable way something can be done about the fact the BSA has made it a criminal act to own lots of software and have less than perfect archiving of license paperwork.. I don't think there's any way that could be done in a reasonable manner within this "bill of rights" though...
Re:Wishful thinking (Score:5, Interesting)
Is there such a thing as a Software Consumers' Association? I couldn't find anything like that using a quick Google search.
Awesome, but they missed a big one. (Score:5, Interesting)
But there's a big one missing, particularly important in light of Symantec's foolhardy announcement:
The software can be installed on multiple machines.
I own a notebook and a desktop home server. I use both of them basically as a unit - sometimes literally, via Terminal Services or Synergy. They achieve different purposes - the server provides infrastructure (holding data, managing requests from other users [e.g., web pages], network security, MP3s), while I run actual applications on my notebook.
With this setup, it only makes sense to have a roughly identical set of software on each. I don't want my word processing solely on my notebook, and I don't want all of my security apps solely on my server.
So it's exactly that reason why this product-activation crap is odious. If I want two functionally-identical machines, I have to buy two operating systems, two word-processing packages, two versions of TurboTax and Symantec. similarly, with DRM, I'll have to buy two licenses for every piece of media I want to play. Others will follow down this path to the seedy underworld of profit-driven software.
It only seems fair that I expect to pay only once per software package. After all, I'm one guy; I'm never typing on both machines at the same time. Now, I understand why software companies are reluctant to release software that can be installed a trillion times, because it tends to get purchased, like, eight times, and then widely distributed on IRC. But at the same time, they're smacking down guys like me.
So with that in mind, I propose: Let software be installed on multiple machines. That number can be limited, and it can be small. Ten is fine - if I install software on more than ten machines, I should probably be purchasing a site license. But one is insufficient, in this day of frequent multiple-computer ownership.
- David Stein
#11 (Score:4, Interesting)
So I feel it needs another article:
11. A software vendor will provide real support for the products they sell. Or A software vendor will outline in detail what; if any, support they provide and what guidelines they use.
Re:de minimis fraud (Score:3, Interesting)
If they claim, however something that is objective and verifiebly untrue, you should be able to sue. Say, McDonalds claiming that the big mac has x% of fat when it's not true.
Apple Computer... (Score:2, Interesting)
Alternative: Consumer Protection Labeling (Score:3, Interesting)
Caution! By agreeing to use this software, the vendor may access your private files at any time.
Caution! This software is unprotected and may expose you to foriegn programs (virus and worms) that may corrupt your documents.
The benefit to consumers, of course, is that no software manufacture would want to have these labels applied to their software.
Re:Awesome, but they missed a big one. (Score:3, Interesting)
Re:What "Microsoft viruses?" (Score:3, Interesting)
You would think that after 10 years of this crap that Microsoft, with all their money and resources would have figured out how to provide their customers with a mail client or OS that any halfway intelligent 15 year old couldn't bring to it's knees after spending an afternoon on an IRC channel with his buddies.
The only way that I can see a company like MS being able to get away with this b.s. is that they have a monopoly where people have no alternative.
Is it Linus Torvalds' fault when there's a sendmail hole? Is that suddenly a "Linux hole?"
That is ridiculous and you know it. Linux is a stone soup proposition, not a monolithic deal like you get when you buy into Microsoft. With Microsoft you get the line "we will fulfill all your needs, no others need be considered". Well the Microsoft way sounds good to an IT director, until you ask what happens when MS falls down on the job and leaves you nowhere else to go.
I am sure Linus would say "if you don't like sendmail, switch to another MTA, there are many". With Gates all you get as a choice is "we are doing the best we can".
People who don't like sendmail's long history of problems can switch to a different MTA. Many do. Products like QMail and PostFix don't have these sendmail's problems, and I personally would not run sendmail on a bet.
Unfortunately MS has the world by the short hairs when it comes to choice and users who don't like it often have no choice but to eat the crumbs that fall from Microsoft's table.
As a sysadmin that has to support both Linux and MS servers, I personally feel sick to my stomach every time I have to deploy a MS solution because of the problems this brings - high cost, both up front with licensing and license compliance bookeeping, with maintenance, and crummy reliability. It is ridiculous that companies buy into this. The fact is that with the problems that occur with MS's patching mechanisms you will be continually patching and testing the patched systems, AND never knowing if one patch is going to cancel out the effects of a critical fix applied previously (and yes I have been bitten by this).
The fact is that MS ships a broken product. There is no reason that IIS should run as a kernel level device driver making any IIS exploit a system level exploit or that your laptop should arrive with an administrative account with a blank password. Stuff like this shows that MS just does not care about long term issues like security and reliability, just being able to show a few pages per second more in benchmark studies.
Now Microsoft users are in a real bind. They have bought into a closed system that is broken, and there are lots of disaffected teenage males looking to make a splash on the evening news with a virus they've written or modified.
It is not hard to predict that Sobig.F is not the final Sobig, and that Blaster and Slammer are going to be followed by other similar efforts.
MS users had better strap in. It's going to be rough ride.
Re:Alternative: Consumer Protection Labeling (Score:3, Interesting)
This port has installed the following files which may act as network
servers and may therefore pose a remote security risk to the system.
/usr/local/sbin/oftpd
If there are vulnerabilities in these programs there may be a security
risk to the system. FreeBSD makes no guarantee about the security of
ports included in the Ports Collection. Please type 'make deinstall'
to deinstall the port if this is a concern.
For more information, and contact details about the security
status of this software, see the following webpage:
http://www.time-travellers.org/oftpd/
Ooookay.... (Score:3, Interesting)
We've got one story about robots putting people out of work and another with people claiming we should put people who do jobs robots can't do (like programming) out of business.
"All software should be free! lalala."
Give me a break.
Ben
Re:They forgot one (Score:2, Interesting)
I've had plenty of occasions to make small changes to applications running on my Linux box.
For example, earlier this year I installed GnomeMeeting [gnomemeeting.org], which is a Linux audio/video conferencing program that will talk to NetMeeting clients. I very quickly discovered that when GnomeMeeting starts up, it automatically selects the microphone input on my sound card as the "recording" input. Which isn't what I want -- my microphone is actually connected to a mixing board (along with a synthesizer and an electric drum kit) which runs into my sound card's line in jack.
I Emailed the author to suggest that he make this option configurable... Got a very detailed and completely polite response from him less than an hour later, saying that he's very sorry, but since he's trying to compete with NetMeeting, simplicity and ease of use are of the utmost importance to him, and he feels making this an option would confuse too many people...
So I looked through the source code, found the piece of code that selected the microphone input, and just commented it out.
Another example: I have a friend who reads Yahoo's News section on a regular basis, and whenever she finds something she thinks is interesting, she sends me the URL to it over ICQ... But since Yahoo disallows deep linking, I never end up at the page she thought she sent me to. And if she goes back to her ICQ history and clicks on the URL, it pops up fine for her -- because the URL currently loaded in her browser was still one from Yahoo's servers. So naturally, she blames me for the failures.
I haven't actually tried doing this, but I keep thinking I should add something into Firebird that'll make it so that whenever the "real" Referer URL is on a different domain than the URL being requested, the top page of the domain being requested gets sent as Referer instead. I'd think it wouldn't break too many things if it doesn't effect the behavior when going between two pages on the same site.
'course, if this became common practice, the /. effect would become a much more fearsome thing.
But really, the best argument for this suggestion is much closer to what you were originally saying. It's quite possible that programs are doing "something funny." While having the right to view the source code would make it much easier to detect if this is the case... Actually having the entire source code in a readily compilable form would enable you to easily disable the "funny" behavior.
In other words, it would assure you that you'd still get the functionality you were promised when you paid for the program, even if there's some functionality in it that you find objectionable and would like to disable. It would give you a much larger level of control over what your system does and what it doesn't do.
But heck, we all know that's not going to happen... Because if we give users control, the companies lose control.
What actually happens is the exact opposite. Case in point... Earlier this year, with iTunes 4, Apple introduced the ability to MacOS X computers to automatically stream their MP3 libraries to other Macs over the Internet. A large amount of software very quickly showed up to let you download and save MP3 files over this protocol, instead of just listen to the streamed versions.
But, lucky for Apple, they soon discovered that there was some sort of bug in iTunes 4 that caused MP3 files to sound horrible if you had your computer's volume set very nearly to the top. (I'm not exactly clear on the precise nature of the bug -- I rarely have my volume set anywhere near the top. Most of the music I listen to is fairly quiet.)
And, naturally, the same update (iT
Re:Wishful thinking (Score:5, Interesting)
Any attempt to form a "Software Consumer's Organization" will have a BSA bullseye painted on it in a heartbeat. It would be far more exciting to see the Alliance Against Fraud in Telemarketing and Electronic Commerce (AAFTEC) decide that current software licensing practices are deceptive, fraudulent and unfair to consumers.
Re:Wishful thinking (Score:5, Interesting)
When public anger with an industry rises, legislators get tempted to create laws to regulate the industry. Software publishing is particularly vulnerable because so many publishers have engaged in business practices that would be considered outrageous (and unlawful) in traditional markets AND because this is no longer a wildly expanding industry / employer in the United States.
We can lay out some principles to advise those legislators, or we can lay back, and later complain that they got it all wrong.
Re:Live up to marketing???? (Score:4, Interesting)
accurate but useless (shown in clinical tests to contain the active ingredient X, i saw this one the other day, I'm not kidding, they made no claims about the effectiveness of the stuff, just claimed that clinical tests showed the stuff contained one of the ingredients)
or
subjective as all hell (any adjective incl best, fastest, biggest, or claim to surveys, used by more popular cheerleaders than any other brand of laxative)
If you can show they lied you can make big money. If they do lie then they won't have much money in the first place.
Lies by omission are a little different but even in ads there is no law that says you have to be exhaustive, just don't actively lie.
Software Publishers vs. Computer Owners (Score:4, Interesting)
The Free/Libre/Open-Source Software (FLOSS) movement seems to understand this, but many mass-market proprietary software developers are still able to flout this rule. Unfortunately, most computer users have become accustomed to being subservient to their software.
My own experience with most FLOSS has been much like my experience with high-speed Internet service: I can never go back. I think once people get a good taste of what using well-behaved software is like, things will quickly change. The only things that can get in the way of this change are:
Unrealistic (Score:2, Interesting)
When a big company buys a big piece of software, the license agreement is negotiated to something mutually understood and acceptable. When millions of people buy software from a monopoly in an office supply store, there is no negotiation. The monopoly gets exactly what it wants, and in this case has had the law written to its specifications just to make sure.
So fogeddaboutit. Ain't gonna be no rights unless you can come up with some big campaign contributions.