The acquisition of RedHat by IBM worries me as a European. Not only because of the “cloud” focus and the collaboration with Google & Microsoft (there’s a redhat - tweet), but also because of IBM itself and its proven role in PRISM. Can the Fedora project be trusted despite this acquisition? Who has the last word - Fedora or IBM/RedHat?
The OS seems to be technically secure, but the web is not. How is this gap - also in connection with a browser - filled? I’m not talking about code here, but in Stallman’s spirit about privacy and thus freedom and thus actual security. You can see this question in connection with Fedora’s Chromium Browser, which offers VAAPI support, but is in no way “ungoogled”. And also Firefox is - without the corresponding user.config - a telemetry monster which even used telemetry, if telemetry is activated or deactivated. Data will also be sent to Google by default if various security settings are not deactivated. Then you have to deal with 2 policies: Mozilla and Google. So why not ungoogle your own Chromium Fork? Does Fedora (not IBM/RedHat) has a deal with Google (like EndlessOS which now shows more than clearly how run-down linux can be in our times)?
In general I noticed that other privacy/security aspects are not discussed in Fedora forums. A question about how Quo Vadis certificates can be desitrusted (not only in the browser but system-wide) was simply not answered. Intended or not?
Why is there no reporting of such incidents as Quo Vadis? The normal user (people like me) should also be informed by Fedora, including appropriate steps for the OS. A corresponding category in a Fedora blog would be enough. But there is no corresponding category (privacy/freedom/security) here either.
Despite massive concerns, Fedora Silverblue is the best I’ve come across so far. Which divides the feeling of “having arrived” even more (due to the legitimate concerns).
It would be a lot more to write, but it’s enough. English is not my mother tongue, so I apologize for any grammatical mistakes. You know what I’m writing about. This is not primarily about code and coders, but about the ethical side. And this should not be forgotten by the coders. After all, the coders, not the managers, have the power. Without intelligent coders, every manager is nothing.
And without an ethical coder, the end-user’s rights are violated.
These issues should not be discussed away. And that’s the difference between “free software” & “open source” - their community only care about the code and leave out everything else that leads to catastrophes, as Snowden clearly pointed out. Without unethical coders, PRISM, upstream & co. would not be possible. Which side is Fedora on?
Especially as far as the future is concerned. The US government is a big customer of RedHat/IBM, that is no secret. Why should this not worry me as a European Fedora end-user, given the facts presented years ago and the aggravation of these facts (now as in the near future) ?