Arrests For Selling Poison-Ware In Spain

An anonymous reader writes "Spain's FBI equivalent has arrested the management of a software company (Google translation; Spanish original) for selling custom software to small and medium-sized businesses with 'controlled errors' that resulted in the software bombing on a predetermined date. They would then charge for fixing the problem and press the client into buying a maintenance contract. More than 1,000 clients were affected."

Microsoft

[Dexter Herbivore]

Sooo, they were following the Micro$oft business model then?

Re:Microsoft

[Anonymous Coward]

There's nothing the least bit controlled about Microsoft's errors, so I fail to see how this could apply to them.

Re:

[ElectricTurtle]

Those who did not learn from the history of Windows 3.0 are doomed to repeat it.

Re:

[Anonymous Coward]

I don't agree, and I'm not saying they deliberately cripple the code. By going for cheaper development process they can ensure continued product enhancements and a much stronger need for product support in mission-critical environments. (ugh, did I say mission-critical? How come Microsoft products even end up in that sector???)

Re:

[mysidia]

That's right... plausible deniability.

You have to pay for non-security bugfixes to Windows 2003 now, by buying a contract within 90 days of Jul 12, if you want support.

There are no "bomb on X date" bugs, but who in their right mind doesn't think there will eventually think there will eventually be some nasty bugs found? :)

Re:

[mysidia]

[Er.... there are no known "bomb on X date" bugs]... Until the next Y2k-style event that is, when system clock reaches the maximum.

Many 32-bit OSes will be screwed in Jan 2038.

Re:

[mysidia]

Maybe so... but by 2038, there will be a lot more old software than there was in 2000.

There are still businesses today, relying on Windows '98, even DOS 5.0 and Netware 3.x, are critical software to some businesses.

Think.. back in 2000, computers had only been in widespread use since the mid-80s. Approximately 20 years.

The number of software developers, and the number of programs people relied upon was very small back then.

The amount of different business critical software programs in use by dif

Re:Microsoft

[theshowmecanuck]

I call bullshit. For one, I was involved in Y2K related work for businesses that would have failed if their systems were not upgraded, namely the main enterprise business systems for daily newspapers (their circulation systems); for prepaid and wholesale (single copy) sales. And that included almost every newspaper in North America, and many overseas (not that our company worked on every newspaper's system, but considering there are not that many circ system software solutions, and they pretty much all had Y2K issues...). As well, the dot com bubble didn't burst until at least January 2000 which means that the Y2K issue was sorted out or companies were out of business before the dot com people were out of work. As well, the dot com people thrown out of work were mostly web developers, and the Y2K issue affected server side, and often COBOL related software... not exactly in the dot com programming skills bag. The company I worked for by the way provided a non-COBOL replacement system to fix our clients Y2K... complete new system instead of patching the existing system. I don't know where this 'myth of the Y2K' came about, but it seems to yet another conspiracy theory. I haven't seen or heard of one Y2K fix being worked on that wasn't solving a real critical issue. You're not a 'truther' or 'birther' by any chance too?

Re:

[MarkGriz]

If only you could have fixed their Y2010 problems at the same time.

Re:

[ultranova]

lotta hype, and a lot of busy-work for workers recently displaced by the dot-com bubble burst. that's really what the y2k bug amounted to

Yes, when an error is fixed before it can cause problems, those problems never manifest. Isn't it amazing?

Logic bomb

[HTH NE1]

and that won't actually effect anything at all, pretty much the same as the y2k bug really wouldn't have effected anything either.

Y2K effected a free OS upgrade for me!

But otherwise, no, it didn't affect much at all.

Anyway, why the new term "poison-ware"? Isn't this what we used to call a "logic bomb"?

Re:

[rjstanford]

You have to pay for non-security bugfixes to Windows 2003 now, by buying a contract within 90 days of Jul 12, if you want support.

Which seems reasonable considering that the product came out 7 years ago, during which time there have been many free patches; also, a newer fully supported version was released 2 years ago. How long would you expect a company to maintain old versions of software for free?

I'm pretty impressed that they're still willing to support it for money, quite frankly.

Re:

[pegdhcp]

My dear Sir, the correct expression should be:
"There's nothing the least bit controlled _by the user_ about Microsoft's errors."
Sincerely

Re:Microsoft

[badboy_tw2002]

Mod parent up! Epic slam at the '$oft, brah.

Re:

[Dexter Herbivore]

Troll? Some people around here have no sense of humour...

Adobe Guilty

[Tablizer]

Adobe's ColdFusion kind of does such by not renewing the Java "trusted" certificate for older versions such that a warning pops up when using Java widgets from those versions. It's not a show-stopper because it's only a warning dialog, but it essentially forces an upgrade for serious businesses who don't want nag screens for their clients.

Shenanigans!

[WrongSizeGlass]

I hope they throw the book at them. They're basically holding their customers hostage.

Re:Shenanigans!

[Meshach]

I hope they throw the book at them. They're basically holding their customers hostage.

Even worse, they are breaking some contract for sure. Bugs are one thing; every written piece of software contains bugs. But when you intentionally code the program to fail at certain intervals you are cheating the customers.

What if cars were programmed to randomly stop at some random interval? GM's head would be served up on a plate.

Re:

[Stoutlimb]

That kind of thing has been happening for generations, where have you been?. http://en.wikipedia.org/wiki/Planned_obsolescence [wikipedia.org]

Re:Shenanigans!

[Meshach]

Planned obsolescence (planning for a product to go out of service) has no relation to selling someone a product that explicitly developed from the start to not do it's advertised capabilities.

Re:

[Stoutlimb]

Sure it does. There are varying degrees of that kind of behaviour, and some cross the line of legality, depending on what is promised in the advertising and contracts. XP was advertised to be very secure, but it won't be after they stop supporting it. I'm not even sure it's secure now. It's a matter of the company trying to get away with as much planned obsolescence as possible without being nailed by the law, and it happens all the time. This is just an example of planned obsolescence that is obviousl

Re:

[T Murphy]

There's some expectation of the software being as error-free as possible (given they aren't advertising it as a beta). Intentionally including a bug could therefore be argued as going against advertised capabilities, if only implied capabilities.

Not entirely shenanigans!

[Ungrounded Lightning]

[Planned obsolescence] has been happening for generations, where have you been?

It's not always ENTIRELY shenanigans.

For instance: The "design lifetime" in the auto industry is not just about selling another car. It's also about not spending a lot of extra money making, say, the transmission good for 750,000 miles when several other major systems are going to go out at a small fraction of that time. (When you're making several million units a year, saving a nickel each adds up to enough to hire two more full-time engineers to figure out how to do it.)

Making mechanical parts that last can be tough and costly. (And half a century ago it was a lot tougher, without the major advances in materials science since then.) If you design all the parts to last for at least some design lifetime and not much longer you can accumulate a lot of savings. If some major system was going to unavoidably fail shortly after that design lifetime anyhow, having the rest not good for much longer doesn't appreciably affect the utility of the vehicle for the consumer. But the cost savings can be used to lower the price (and grab market share, for a net profit increase) - which DOES help him out significantly.

The ideal in the limit is the "Preacher's marvelous one-horse shay, which lasted a hundred years and all fell apart on the very same day."

some cars have oil change light that only dealer c

[Joe The Dragon]

some cars have oil change light that only dealer can trun off. But there are other laws that stop the them going to far.

Just wait for the AIR force to get shut off and then this carp will die fast and some may go hidden jail.

Re:

[KshGoddess]

I'd like to call shenanigans on that one. Every car I've owned (GM, VW, Honda, Ford) has pointed out in the owner's manual in clear text how to turn the light off. Usually, you push some button or series of buttons that will turn that light off.

Comment removed

[account_deleted]

Comment removed based on user account deletion

Re:

[zwarte piet]

There is a story of Henry Ford sending out employees to look on the salvage yards for Ford cars and write down wich parts would still be in excellent shape. If that happend too often for a certain part he knew he could use cheaper materials for that part in new cars.

Re:

[smellsofbikes]

Likewise there are stories about WWII fighter aircraft designers looking at beat-up planes, finding out which pieces hadn't broken, and removing material from them to make the plane lighter and more maneuverable.

Re:

[Fluffeh]

Bugs are one thing; every written piece of software contains bugs. But when you intentionally code the program to fail at certain intervals you are cheating the customers.

Doesn't that also fling the doors WIDE open for damages suits to be filed against the company for losses in the clients companies?

Re:

[Ethanol-fueled]

What if cars were programmed to randomly stop at some random interval? GM's head would be served up on a plate.

I envision a future where all the use of all hardware and software is leased, and it can be disabled at will when the vendor changes the terms of service("terms of use are subject to change at any time") as per the EULA. Vendor just got sued for patent violations, wanna continue to run their software? Help pay their legal fees the extra $5 monthly surcharge. Wanna get back on the internet? Pay yo

Re:

[Joe The Dragon]

This is kind of stuff that jigsaw guy does not like.

Re:

[enjerth]

Oh, so you want to get the customers on the hook, using software that's violating a hundred patents, and then make them pay again to keep using the software? Then if the user doesn't agree to the new EULA, shouldn't there be a refund?

That's not the way EULAs should work. If the EULA changes and you don't agree, wouldn't that mean that the former contract is still agreed on by both parties? I mean, if EULAs are lawful contracts, then the only way to invalidate a former contract is to agree on a new contract.

Re:

[Anonymous Coward]

Then there is Toyota - their cars are randomly programmed *not* to stop at random intervals.

[rimshot]

fun captcha = Kicked

Re:

[JWSmythe]

Well.....

Since you brought the car analogy in... :)

Cars have a given lifespan. It's not totally precise, but it's good enough. Many parts are designed to wear. It's better for the manufacturer if the car lasts about 100k to 150k miles. You liked the car til it got old and started breaking down, therefore you buy another car from them. Manufacturers also maintain a lifespan where they will continue to produce replacement parts. From what I found online, that

Re:

[Golddess]

And yet Craftsman and their lifetime warranty hasn't seemed to impact their sale of hand tools.

And yet Jansport and their lifetime warranty hasn't seemed to impact their sale of backpacks.

There may be others, but those are the only two I've had personal experience with.

Re:

[JWSmythe]

Craftsman has limits on their lifetime warranty policy. I worked at Sears for a while and had to deal with some of those returns.

If the tool isn't being made any more, it may be replaced with a newer version.

If the tool was used in a manner not consistant with it's proper use, it will not be replaced. If there are hammer marks in the handle of a screwdriver, or dents in the head of a ratchet, that shows misuse.

If the tool was abused (i.e., rusted

Re:

[JWSmythe]

LED lightbulbs, Flourecent bulbs,

They're much better, but still not forever. I do appreciate the advance though. A glowing hot wire inside a vacuum sealed glass sphere seems a bit out of place with our advancements in technology.

and tons of ads in classic car magazines for replacement parts for everything from the Model A forward. I have a 1948 Ford myself.

Those would be aftermarket parts. Some may be stock that was purchased when the manufacturer obsoleted it, but at least

Re:

[Golddess]

But when you intentionally code the program to fail at certain intervals you are cheating the customers.

Unless the contract stipulated that you only licensed it for use for x amount of time.

Which, yeah, doesn't sound like that's what happened here, but just saying.

Re:Shenanigans!

[Jade E. 2]

how about this one, does it contain bugs?

10 PRINT "Meshach is never wrong!";
20 GOTO 10;

Yes, BASIC doesn't use semicolons at the end of lines.

Re:

[Nethead]

That and the BASIC interpreter likely has a bug somewhere.

Re:

[shutdown -p now]

Yes, BASIC doesn't use semicolons at the end of lines.

Indeed, BASIC doesn't use semicolons to end statements. It does, however, use semicolons specifically in PRINT statement to indicate two things. First, when used as a separator between two arguments, it indicates that arguments shall be printed without any interweaving space (in contrast, comma imitates tabbing by inserting spaces between arguments to line them out in the output). Second, when used as a terminator after the last argument of PRINT, it suppresses a newline that is normally printed (comma does

Re:

[shutdown -p now]

Good for him - I didn't read the whole thread. Anyway, what I said still applies to Standard (ECMA/ANS/ISO) BASIC; semicolon as a statement separator is a language extension.

Re:

[icebraining]

Nice post!

Re:

[Daniel_Staal]

10 PRINT "Meshach is never wrong!";
20 GOTO 10;

I'd count an infinite loop as a bug...

Re:

[MichaelSmith]

10 PRINT "Meshach is never wrong!";

20 GOTO 10;

I'd count an infinite loop as a bug...

All of my microcontroller programs have infinite loops.

Re:

[MaskedSlacker]

Loops that escape upon some condition are, by defition, not infinite.

Re:

[MichaelSmith]

Obviously the BASIC example is not infinite, because energy is finite.

The power switch

[microbox]

Loops that escape upon some condition are, by defition, not infinite.

What if that condition is the power switch? Perfectly plausible for a microcontroller.

Re:

[enjerth]

Finding a way to cancel execution does not negate the fact that the instructions express an endless loop.

Great. Now I feel like I'm competing in the Special Olympics. It seems we're all retarded in this thread.

Re:

[totally bogus dude]

If your "server daemon" enters an infinite loop, then it's definitely a bug. Of course you want it to be shut down cleanly sometimes, which means it has to have some mechanism for ending the loop, cleanly ending any current sessions, and releasing resources.

Re:

[mysidia]

Yes... I suppose the question is.. did they specifically pick an arbitrary date, just for the sake of generating revenue, or was there a reasonable technical justification for the limitation?

Did they know about it or not? And if they did, then why did they not inform their customers of when the software would stop working and need an update?

See... a LOT of software, that relies on dates and times, if still in service, is going to stop working on a certain X date, that X date is Jan 1, 2038.

Until/un

I know a couple of guys like that

[nurb432]

And i made some decent money undoing their damage. Donno why the customer never bothered to press charges.

Not that uncommon

[Improv]

Some of us, regrettably, have seen business practices not entirely dissimilar to this in places we've worked. "I found a bug that could cause our really important software service to crash" "Don't fix it - wait until someone on a service contract reports it". Sigh.

This is not the same thing at all.

[brunes69]

Any business has to weigh priorities. If you are spending your time fixing bug X, then that means either bug Y or feature Z is not being done.

Just because you know bug X exists does not mean it is more important than bug Y or feature Z, especially if no customers have reported it occurring.

Of course this all depends on the nature of the bug and what you mean by "crash".

Re:

[Improv]

True. Also the nature of the product.

Re:

[LingNoi]

Hold on a second dude. That's not similar at all. Not fixing a discovered bug in a years old client's software when they've not paid you to do it is simply business. If the client cares about it then they'll hire someone to work on it. You don't go back to a builder years after he's worked on your house and expect him to fix a mistake without payment, just because it's software doesn't mean reality changes.

If that's what your company does then please hand out the URL. I'll be the first in line to say that o

Re:

[msobkow]

Personally I've never run into a company that didn't log the bugs encountered during development and testing. The question was whether they were considered high-enough priority to fix before release.

Re:

[complete loony]

Wait? You ask for permission?

Where I currently work, if we encounter a bug with a trivial enough fix, we'd just fix it. Especially if you are already working on that section of code for another reason. Though this way the fix would only be released in the next major version.

If the bug is serious enough and might impact any existing clients we'd immediately raise a change request to track it and ask our client management / support staff if each client needs it fixed. (This is a pretty large software system

Uah

[AnAdventurer]

Why didn't I think of that?

Nice

[DoofusOfDeath]

In the US, the corporation, not the people, would be charged with a crime. And then they'd settle with the Government for a fine and no admission of wrongdoing.

It sounds like Spain out-justiced the US this time around.

Re:

[reydelamirienda]

I'm not an expert but I'd say that depends on what kind of company it was. If you have a SRL (Sociedad de Responsabilidad Limitada, Limited Liability Company), they can go after you for fraud (the limitation of liability is restricted to debts), otherwise I think it's harder...

Re:Nice

[mcoca]

The people were charged because it was a criminal case. Had it been a civil action, they would have gone after the company. Pretty sure it's the same in the US.

Re:

[tibit]

Seconded.

Re:

[Yaa 101]

Because US people cannot stand getting their companies criticized.

Re:

[Caledfwlch]

... unless they're doing the criticizing themselves!

Extra work ahoy!

[Twinbee]

Hang on, isn't that a good thing, because it's creating 'more work'?

[/sarcasm]

When will some people start to realize that efficiency is all about reducing jobs, instead of creating them... sigh.

Yet another argument for Open Source. B-)

[Ungrounded Lightning]

(Subject line says it all.)

Re:

[shawn(at)fsu]

The folks at the obfuscated C contest would like to point out that just because you see the source doesn't mean you'll easily be able to figure out what it's doing.

Re:Yet another argument for Open Source. B-)

[Ungrounded Lightning]

The folks at the obfuscated C contest would like to point out that just because you see the source doesn't mean you'll easily be able to figure out what it's doing.

True.

But it's a lot easier than with a closed source program with the code owned by the crooks.

Re:

[ProdigyPuNk]

How often does anything that looks like an obfuscated C contest entry actually get committed to a repository ?

Re:

[nacturation]

How often does anything that looks like an obfuscated C contest entry actually get committed to a repository ?

Check out any project on SourceForge that is written in Perl. :)

Re:

[shutdown -p now]

How often does anything that looks like an obfuscated C contest entry actually get committed to a repository ?

If it's obfuscated well enough, you don't really know. That's the whole point.

Re:Yet another argument for Open Source. B-)

[Mike610544]

How often does anything that looks like an obfuscated C contest entry actually get committed to a repository ?

It happens all the time where I work. I maintain some old code written by an old hacker (he's got a credit in the K&R book!) Shit like this is not uncommon:
*(&z + z) |= ~tqq + m ? u9 >> 2: 741 | w & 0x8F ? ~(~t11) : foo

How dare you, my mother is a saint!

[SmallFurryCreature]

I wonder which programmer should be more worried, the one who can't read the above, or the one who can.

Re:How dare you, my mother is a saint!

[KiloByte]

In this case, the one who wrote that. And I don't mean just readability by novices.

*(&z + z) -- unless it's C++, this makes sense only for referring to the zth next variable after z. Like: int z, a, b, c; -- z=1 will select a, z=2 will select b, z=3 will select c. In an old compiler, this will always work. In an optimizing one, it's damn likely to break.

Mixing dec and hex numbers, and writing down constants for bit operations using decimal numbers in general is prone to mistakes.
So is using addition in an expression that consist mostly of bit operations, you want | there instead.

0x8F is a complex mask, it definitely should be a #define with a name. There's nothing wrong with masks like 0x7F or 0x1F, but for 0x8F, it's not obvious enough.

~(~t11) -- uhm, what's the point?

With these issues fixed, though, with a bit of comments such a code isn't that bad.

It's not the language, it's the people

[kikito]

I'd like to point out that the fact that perl allows this kind of aberration doesn't mean it enforces or promotes it.

In fact, that code (or a very similar one) can be written in other languages, such as ruby.

This just points out that the programmer in question had serious issues in understanding fundamental concepts such as maintainability, and was more interested in amusing himself than in doing a professional job.

The credit on K&R doesn't mean a thing if you program like that on a day-to-day basis.

Re:

[InfiniteWisdom]

Unless the vendor is working on the software in its obfuscated form rather than using a processor to generate it, they would still be violating the GPL if all they released was the obfuscated source code.

From the text of the GPL:

The "source code" for a work means the preferred form of the work for making modifications to it.

Re:Yet another argument for Open Source. B-)

[CAIMLAS]

Sure. And who, exactly, is going to contribute to an open source project written intentionally obfuscated? Nobody. Then the project gets the reputation of being shoddy, and nobody uses it.

Or, there's also the "we'll just rewrite this little obfuscation and fork it" scenario.

Open Source thrives on its quality and dies from crap like this. People don't contribute to dead projects: they fork them or reimplement them.

Re:

[TheVelvetFlamebait]

It's a very, very slim margin. You would have to have enormously talented programmers to be able to restrict errors to "controlled errors" while programming in such an obfuscated way, and you'd have to be more talented than the people trying to debug your code. To hide the error effectively, obfuscating a small amount of code would make the error obvious, but obfuscating large swaths of code would make the code unmaintainable.

Even then, if you can view the source, you can usually make some kind of judgement

Re:

[TheVelvetFlamebait]

OK, but how do they deal with the problem of the code looking obfuscated? I mean, there's no point to code nobody will use, right?

I think...

[cyberzephyr]

It was a feature :-).

Meanwhile, back on the ranch

[zennyboy]

I live here in Spain and this doesn't surprise me. Meanwhile, back on the ranch, I'm surprised someone managed to program something so reliable they had to code in a time-bomb to make the software fail!

Spanish coders did that!

I'm proud :-)

(English ex-pat)

Look, this is what really happened

[SmallFurryCreature]

Manager: Why is it programmer that all our software keeps failing? The customers are demanding a solution even if they have to pay it. Can't you just write code that works?

Programmer: Eh...

Manager: Mind you, it is a good thing it failed we can really use the income.

Programmer: eh?

Manager: It is almost perfect, we sell them code, then half a year later they got to come in to get it serviced. Like a timebomb goes of ensuring future profits.

Programmer: Ah! Yeah, that is it sir. It is like your car needing

Re:

[Alex Belits]

Springtime! For Hitler! and Germany!

Your lack knowledge of Spanish culture

[kikito]

First of all: No Spanish worker will call his boss "sir". That's very much anti-Spanish. Just to give you an example: a recent unofficial competition asked Spanish people to come up with lyrics for the Spanish national Anthem (which is lyric-less). One of the candidates had the following text:

"Un jefe muy cabrón / soy un buen español"

Which translates to:

"A very bastard boss / I'm a good Spanish citizen"

Also, we use expletives when giving/receiving bad news. They are solely lacking on your text.

Does anyone know who it is?

[Wolfling1]

The article does not name the software company. Two of our main competitors timebomb their software - though it is written into the contracts, so its essentially above board. Still, I'd like to get a company name so that we can publish something to our customer base about this...

Re:Does anyone know who it is?

[Anonymous Coward]

The company is CIPSA, is mentionend on the GDT news: https://www.gdt.guardiacivil.es/webgdt [guardiacivil.es] at the bottom of the page, under "Detenidos los responsables de comercializar software con "bombas lógicas"

Re:

[tehcyder]

Two of our main competitors timebomb their software - though it is written into the contracts, so its essentially above board.

An illegal contract isn't binding...

hang them

[andoman2000]

These guys should be hung in the public square especially the technicians that re-wrote the software to fail again after the "fix"

It's not totally uncommon

[Lord_of_the_nerf]

I've worked in a few places that have basically been held hostage with 'support' contracts for their shoddy products. They prey on total lack of knowledge and short term thinking.

I recall identifying some changes that would reduce the need for the ongoing support and having such a company cost them unrealistically so as to price it out of our reach.

They then resumed gouging us for UI changes that I probably could have done myself.

Eliot Carver

[colinrichardday]

Sounds like Eliot Carver from Tomorrow Never Dies.

I just hope they don't try to start a war between Britain and China.

Re:

[L4t3r4lu5]

I'm INVINCIBLE!

Oh, wait, wrong stereotypical nerd bad-guy henchman who can make satellites fall directly into the middle of a US city using a PDA with bluetooth and a Pringle's can antenna.

Proliferation of Greed

[Tablizer]

It's amazing how greed feeds on itself like an addiction. They could have fleeced a dozen or so companies and kept under the radar. Instead they moved on up bigger, wider, and bolder so much so that the risk of getting caught became almost a certainty. Enron and Madoff are also examples of this.

I'll play advocate of the devil

[mrjb]

Software bombing on a certain date, just so you can charge for "fixing" it is evil.
But that assumes that the software was paid for to start with.

I remember my father adding just this "feature" to the software
of a difficult client that only requested feature upon feature
but had a track record of being months late with their payments
(not very nice if you have a family to feed!)

When the payment was once again long overdue, the client was
faced with a friendly dialog stating that the software was
not paid for yet, and that it would only be re-activated after
payment in full. The payment cleared less than 24 hours later.

It probably would have held up in court, too.

Huh, thats odd.

[The Hatchet]

Here in the US, not only is it not illegal to do that, but several companies hold patents on different ways of doing that. It seems to be heavily encouraged to ass-rape every customer you have ever had here, but there is actually a place where this is not so!!?!?!? EGADS!

Can you sue for that?

[jafo]

It seems like, if you were a company that did this and were taken to court over it, you'd use the "How is this different from the Y2K?" defense? ;-/

sometimes it is justified

[eennaarbrak]

A friend of mine works for a company that sells software to a government department a central African country (I want to keep the details vague to avoid incrimination). After completing the contract and delivering the software, reps arrived one day and simply stated "We're not going to pay full price for the software - we're not making as much money out of it as we thought we would." This country does not have much of a justice system to appeal to if you don't have a politician in your pocket, so my friend's company intentionally released code to make the system stop working if the payments are late. AFAIK that fixed the problem.

I'm just curios if these companies were perhaps faced with a similar situation...

sounds almost like a story from Dilbert.

[porky_pig_jr]

A PHB tells Dilbert to tweak the software they sell so blah blah blah.

Almost another case of life imitating art.

Re:

[Bert64]

First, if it's really open source someone else could have fixed it...

Second, virtually every software company releases software with known bugs... For example, windows 2000 had 63000 known bugs of various severity when released: http://www.zdnet.co.uk/news/it-strategy/2000/02/14/bugfest-win2000-has-63000-defects-2076967/ [zdnet.co.uk]

All software will have bugs, either known or as yet undiscovered... What matters really is that these known bugs are disclosed to users, so the users can decide wether they can live with the

Open source is not *everything*...

[sabt-pestnu]

> First, if it's really open source someone else could have fixed it...

It's a small step to say "We have the technology, we can fix it".
It's a much bigger leap to actually fix it. Not many mom-and-pop stores have the resources to fix their POS (point of sale) software, for instance.

The amazing, awesome, fantastic thing, though, is that yes, you have the *right* to fix free/open source software without involvement of the source company.

Note that "Open Source" by itself is not a panacea; there exist licen