HyperWiki

Differences

This shows you the differences between two versions of the page.

Link to this comparison view

Both sides previous revision Previous revision
Next revision 		Previous revision
en:philosophy:java_downfalls [2024/12/09 17:55]
throgh [What are the issues?] 		en:philosophy:java_downfalls [2024/12/09 17:58] (current)
throgh [What are the issues?]
Line 5: Line 5:
 ===== What are the issues? ===== ===== What are the issues? =====
  
-Firstly the **OpenJDK** trademark policy is problematic. Their trademark license **imposes restrictions** for the **redistribution of modified versions** that making it inconvenient to exercise [[https://www.gnu.org/philosophy/free-sw.html|freedom 3]]. The [[https://openjdk.java.net/legal/openjdk-trademark-notice.html|OpenJDK Trademark]] says **"changes required", "so long as that work takes place in the context of an approved Project hosted in the OpenJDK Community"**. Therefore everything abranged by Java project (OpenJDK and JVM) cant be **patched and/or modified** without **approval** by the "community".+Firstly the **OpenJDK** trademark policy is problematic. Their trademark license **imposes restrictions** for the **redistribution of modified versions** that making it inconvenient to exercise [[https://www.gnu.org/philosophy/free-sw.html|freedom 3]]. The [[https://openjdk.java.net/legal/openjdk-trademark-notice.html|OpenJDK Trademark]] says **"changes required", "so long as that work takes place in the context of an approved Project hosted in the OpenJDK Community"**. Therefore everything by Java project (OpenJDK and JVM) can'be **patched and/or modified** without **approval** by the "community".
  
 Secondly, on what comes to security, Java has been one of the most common **infection vectors** for UNIX-based systems. Poor **coding practices in JVM** have resulted in many popular [[https://www.cvedetails.com/cve/CVE-2011-3544/|cross-platform exploits]]. Secondly, on what comes to security, Java has been one of the most common **infection vectors** for UNIX-based systems. Poor **coding practices in JVM** have resulted in many popular [[https://www.cvedetails.com/cve/CVE-2011-3544/|cross-platform exploits]].
  
-And lastly, current or previously **used packaging-scripts** are not very trustworthy, in the sense that they download various **pre-compiled and pre-packaged binaries**, which obviously goes against **Hyperbola ideals** and our [[en:project:social_contract|social contract]]. These are a risk to our users. To properly build them requires several hundred additional PKGBUILDs and the time to rebuild Java from scratch.+And lastly, current or previously used packaging-scripts are not very trustworthy, in the sense that they download various **pre-compiled and pre-packaged binaries**, which obviously goes against our ideals and our [[en:project:social_contract|social contract]]. These are a risk to our users. To properly build them requires several hundred additional PKGBUILDs and the time to rebuild Java from scratch.
  
-For further references, [[https://en.wikipedia.org/wiki/Criticism_of_Java|Criticism to Language itself]] as well has [[https://en.wikipedia.org/wiki/Java_security|Criticism to repeated Security Vunerabilities]].+For further references, [[https://en.wikipedia.org/wiki/Criticism_of_Java|criticism to the language itself]] as well has [[https://en.wikipedia.org/wiki/Java_security|criticism to repeated security vunerabilities]].
  
 ===== Solutions ===== ===== Solutions =====