Huh. https://mastodon.social/@datenschutzratgeber/105900221850302612 This is weird - anyone know the backstory?
@eliasr @brainwane The AGPL tries to help with this—it’s the GPL plus an additional requirement for anyone who has access to the server to be told where they can get the source code the server is actually running (“it’s apache” is not good enough)
but it’s not clear to me that this accomplishes anything useful, because you still don’t have the ability to get the server operators to take your patches
witness all the arguments over features that gargon didn’t want to add to mastodon
What makes a huge difference for social software in particular is whether you can do anything *useful* with your self-hosted copy. For fediverse software, you of course can, as your instance can federate with the rest.
For Signal, which is centralized, not so much.
I was thinking that, regarding Signal, maybe it does not matter so much that there are no commits since April 2020 because we anyway don't know what software they have been running on the server side. We don't know that neither before or after April 2020.
They could run something quite different, that just seems the same from the outside. Or they could just add some secret patches on top of the open-source code.
Or is there some way to verify what the server runs?
Server run by the main developers of the project It is not focused on any particular niche interest - everyone is welcome as long as you follow our code of conduct!