FLOSS Foundations

If you're a regular reader of this blog, you know that Mollom is a continual work in progress. By studying how people use Mollom, by listening to feature requests, and by examining the plugins that our software partners and others have made available, we've introduced new ways to interact with Mollom.

First, we're announcing support for blacklisting. We introduced two new methods: one based on detecting the presence of user-specified URLs, and another that detects specific phrases or keywords. In both cases, Mollom maintains custom, site-specific URL and text blacklists, and knows to search for the presence of these links or phrases when analyzing text for your site. We're adding support for this API to the next version of the Mollom module for Drupal.

Second, we've implemented a new method that detects the language of any given text. We currently support detection of about 75 languages and this new functionality allows our end-users to take action based on posting language. It could be used to help segment web postings into different forums by language, or to help moderate the languages spoken on your site, for instance. The language detection API is used by some of our customers, but probably won't make it into the next version of the Mollom module for Drupal.

We've got other new features that we're working on as well, and will introduce them as they're ready. In the meantime, I'm excited to see what our plugin developers do with this new level of control.

I’m a big fan of short-form presentations, and I like to give one whenever I get a chance. I also like to encourage others to do them for other conferences I’ve organised or run, like  GUADEC, the Maemo Summit or Fostel (site seems to be down now – shame).

I’ve been an admirer from afar of Ignite for years, for the variety and quality of the presentations that you find at their events, and seeing Global Ignite Week announced a few months ago, around the same time that PLOSS Rhone-Alpes started coming together gave me an excuse to do what I’ve wanted to for a while, and host an Ignite Lyon event! The inaugural Ignite Lyon will be held on March 4th in Université Lyon 2 on the quais.

For those unfamiliar with the Ignite talk format, you get 5 minutes for your talk – 20 slides, which advance automatically every 15 seconds. There are lots of Ignite videos on the site.

Once again I’m teaming up with Vincent Mabillot from Colibre, with whom I co-organised Richard Stallman’s recent stop in Lyon last month, and François Aubriot from PLOSS R-A and DotRiver, as well as all of the members of ALDIL and PLOSS R-A who have time to give in this busy month (in addition to school holidays, ALDIL and Colibre are once again participating in the conference Primevere and the week-long “Libre en fête” festival of free software).

I’m looking for presenters! I want to hear cool stuff – personal passions, unusual hobbies or projects, complete with pitfalls and tiny successes that led to a fun conclusion, advice on how to handle difficult problems we all meet, tips on reducing your carbon footprint, how your non-profit group made a difference in your neighbourhood, cries of passion for people to stop doing something you care about *wrong*. Ignite is not just IT, and that’s what I love about it. I will be giving a presentation myself called “hacking your body”, talking about running as performance testing for real life. Of course, it’s also IT, so the geekier and cooler your project, the better If you’re into soldering your own chopper bicycles, I want to hear about it.

As you’ve figured out, I want to hear from you if you have something interesting to say. We’re expecing 100 people from a range of backgrounds, including entrepreneurs, hackers, makers, DIY fans and general geeks & freaks (in the nicest sense). If you want to submit a talk, please use the online form I set up.

The Symbian Foundation is a non-profit organization that stewards the Symbian platform, an operating system for mobile phones and smartphones. The Symbian Foundation was founded by Nokia, Sony Ericsson, Motorola, Texas Instruments, Vodafone, LG Electronics, Samsung Electronics, STMicroelectronics and AT&T. Today, their website runs Drupal.

This is the third in a series of blog posts (previous: 1, 2) on how Mozilla is using its trademarks to try and make sure everyone gets a genuine copy of our software, for free.

Mozilla has a form where people can report sites abusing our trademarks. And we are very grateful to people who do. Harvey Anderson, the Mozilla general counsel, has recently posted some statistics on what those sorts of reports have helped us achieve.

But we aren't the only people trying to deal with the problem of "subscription trap" sites. downloados.de is a private initiative in Germany educating internet users about the typical set-up of a subscription trap. It comes across like a typical trap site, but when the user makes the final click to send off their personal details and to obtain the software, the website then informs them that they were about to spend money on free software and that they should be more careful next time.

More and more we’re seeing organisations outside the free software world  try to learn the lessons of our success, and integrate “open source” practices into their organisation.

Whether it’s companies adopting transparency and other cluetrain or pinko marketing strategies, proprietary software development companies integrating standard free software practices, or one of the other areas where “crowdsourcing” has become the cool new thing, it’s obvious hat we have gotten some things right, some of the time, and it is definitely worth learning the right lessons from projects like Linux, Mozilla, GNOME, or Wikipedia, and trying to reproduce the magic elsewhere.

Sometimes this feels like the cargo cults in the Pacific Islands, trying to make airplanes land as their ancestors saw 60 years ago, by building airstrips and imitation airplanes. But at least they’re trying to figure out what makes our communities successful.

But are we learning enough lessons from others? It seems to me like we’re charging head first like sharecroppers into undiscovered country, only to find that we’ve run into a highly advanced civilisation.

As developers, we’ve invented our own brand of everything, from scratch. We figure out how to run conferences, or raise money from people who like what we do, when these are not new problems.

This isn’t new in IT. The entire learned history of typography got thrown out the window more or less, because with the advent of WYSIWYG editors and the web, everyone has complete control of their authoring tools and Comic Sans is shipped by default, and if I need to reduce the margins to get the letter to fit on one page then by golly I will.

Merchandising and recruitment of new star talent are more examples of things that some other organisations are pretty good at.

So – as an open question – are we learning the lessons from the past which we should be learning, or is it too attractive to think that what we’re doing is so new that every problem we encounter needs a new solution?

One example of a place where there is a wealth of experience out there is convincing people to give money to a cause they believe in. There are dozens of organisations that do this well – humanitarian organisations, political lobbyists, political parties, universities – the list goes on.

Can we figure out how GNOME is like them, and learn the lessons from their fundraising campaigns?

A typical fundraising drive for an organisation like this has three main steps:

1. Get a list of potential donors
2. Convince them that you are doing good
3. Find a pressure point or argument which will convince them to donate

If you look at a mailing for Médecins Sans Frontières for example, you see all of these points in action. Find potential donors – through sign-up campaigns, former donor drives, referrals. Send them a mail package, with a newsletter outlining good work, but with just enough bad news (new conflicts, new refugees, unfinished projects) and artwork (a smiling nurse taking care of a village vs a child ill from a curable illness) to show that money given to MSF will do good, and the need has never been greater.

Your response rate may be small – perhaps only 1% – but that’s enough.

Whether we’re talking about lobby groups, political parties or humanitarian agencies, the same strategies come into play – construct big databases of potential donors, and get them riled up about the thing they’re passionate about being endangered – show them the shining light of all the good work your organisation does, and then drive the sale home by making it really easy to give money or sign up.

University fundraising is an interesting case – and in fact, GNOME’s fundraising model ressembles it now. Your primary source of donations is alumni, people who have been through the university, like receiving updates every year, maybe a class-mate just became a professor, maybe a friend’s daughter got a prize in the annual awards ceremony, maybe a club or association you were in had a good year? And then you leverage the affection with the flip side of the coin – the need, the things we’d like to do better, the project we’re fundraising for which will allow us to do great work.

All of these organisations invest heavily in direct mailing, in building and maintaining databases of supporters, and in monetising them. I recently read a book by a direct mailing copywriter called “My First 40 Years in Junk Mail” and it opened my eyes to what works in that world – and also gave some ideas on the kinds of strategies maybe the GNOME Foundation should be adopting.

The first step  is building and maintaining a list of GNOME fans and supporters, by any means possible, and ensuring that they are made aware of what we’re up to and what we’d like to do. And, of course, continuing to build great products.

Taken with my Panasonic GF1 and the Lumix 20mm f1.7 pancake lens while I was waiting in our car for my wife to buy some ham and cheese. Handheld, no flash, but edited in Adobe Lightroom. I love the camera's shallow depth of field.

On Friday I was notified that I will not be making the transition from Sun to Oracle. Sun was a company filled with talented and energetic people, and I am grateful for the chance to work with them.

Pythonistas (and others) may be wondering what this means for dynamic languages at Oracle. I wish I knew. I don’t have any direct knowledge of this, since I’ve never actually spoken to anyone at Oracle about the topic.   

I am definitely looking for another opportunity. During my time at Sun I’ve worked on a bunch of Python related stuff, as well as a few things related to cloud computing. Other skills in my repertoire include server side development (Java and Python), open source community work, and engineering management. I’m definitely open to different possibilities. The about page of this blog has my contact information, and my LinkedIn profile is a pretty good summary of my credentials.

This is the second in a series of blog posts (previous) on how Mozilla is using its trademarks to try and make sure everyone gets a genuine copy of our software, for free. I will continue to use Germany as an example.

When we discover a wilful trademark infringement, we normally take the following steps, in increasing order of seriousness:

1. Contact search engines to ask for the site to be delisted.

We have a good relationship with the major search engines, and being delisted or having their advertising removed does a great deal to "cut off the air supply" of fraudulent sites.

2. Report the site to consumer protection agencies such as computerbetrug.de, antiabzockenet.blogspot.com and boocompany.com.
3. Send a cease and desist letter.

In most cases, sending a C&D sorts out the problem. If it doesn't, we:

4. File a DENIC domain dispute and request cancellation or transfer of any infringing domain names.

Where there is a domain name involved which infringes Mozilla’s trademarks, we can file a domain dispute alongside sending the C&D. For German domains, this is very quick and cost-efficient (national stereotypes at work :-). Upon cancellation of a .de domain by the infringer, DENIC automatically transfers the domain to Mozilla. (For other TLDs, it's not so automatic.)

We have already obtained numerous domain names this way. Examples include "mozilla.de", "mozilla-europe.de", "mozillamessaging.de" and "mozilla.fr", as well as dozens of typosquatted domains.

Unfortunately, for subscription traps, a C&D rarely has any effect. So we move on to:

5. Obtain a preliminary injunction (PI).

In Germany, PIs are also quick and cheap. Typically, it takes 1 or 2 days to obtain a PI. The proceedings are ex-parte (you only need one side in court), the other side is not even notified of the application for a PI and there is no discovery of evidence. You make your case, and the judge decides.

PIs become effective upon service. If they are not complied with, they can be enforced through penalty payment proceedings. However, a quicker way to take the site down is by approaching the provider. Under German law, internet providers are liable for infringing content once they are made aware of the infringement. Thus, a letter to a provider, accompanied by a copy of the PI, usually leads to the immediate shutdown of the site. (Remember, the site has already been warned of proceedings by the C&D this is not coming out of the blue.)

So far, Mozilla has needed to file 6 7 (another one this week) PIs, and all of them were successful. In two cases, the other side appealed, but the PI was confirmed on appeal.

Recently the German government, along with the governments of several other countries, recommended (link in German) moving away from IE to "an alternative browser", due to some well-publicized IE security flaws. Blog of Metrics has shown us the effect this recommendation has had on downloads of the German localized version of Firefox - 300,000 extra copies in one weekend.

Unfortunately, we strongly suspect not all Germans will be getting the real deal. Germany is a place where Mozilla has a particular problem with trademark infringement of various types. The most typical of these are:

• infringing domain name registrations (e.g. typo domains such as "morzilla.de", "firfox.de")
• misleading online content (people pretending to be the official Mozilla download site)
• offers of modified versions of Mozilla’s software, e.g. with a changed toolbar, or containing malware
• "subscription traps" - where something which seems free actually ends up costing you

I've written about subscription traps in the past. These are fraudulent websites which lead users to believe that they are obtaining a typical free download of Firefox or Thunderbird. Only the small print mentions that by registering for the download, the user undertakes a contractual obligation to pay up to £95 (€105; US$150) per year.

This sucks.

Over the next few days I'm going to be blogging about what Mozilla is actively doing to use our trademarks to protect Germans, and residents of other countries as well, from being ripped off in this way.

My thanks to Anthonia Zimmermann of Lovells for her help in preparing this series of blog posts.

I've just finished watching Diederik van Liere's fascinating presentation (Ogg video, 20 mins), linked to by Mark, about his work with bugzilla.mozilla.org data. Download the full slide deck - you'll need it to follow along with my comments, which should be of interest to the community-minded.

Slides 9 and 10, the community dynamics slides, are worrying. Diederik explains the decline in the size of the community as "increased product maturity", but I'm not sure that's true. If it were, we would expect to see the number of people entering the community decreasing. However, that number has stayed roughly constant, with peaks surrounding a release as we reach out to beta testers, and as new users report bugs. It's the number of people leaving which seems to be increasing. Fewer people are hanging around once they get here. And I don't know why.

Slide 11, about what the final resolutions ended up being of bugs filed in each year, is fascinating. It would be really interesting to see that graphed at a greater granularity.

We have made significant progress in reducing the percentage of duplicate bugs filed. People complain about Bugzilla's search, but the percentage was a flat 25% from 2002-2004, and it's now a flat 13% - basically half what it was. Also, from a low of 34% of bugs filed being FIXED, we are now up at 56%.

There are no doubt lots of factors involved in this effect, including the reduction in the size of the community mentioned in the earlier slides. I'm really interested in working out what we might have done which has improved the situation. I have an utterly open mind on this. here are some significant events I can think of which may be relevant:

• 2000-10: duplicates.cgi created
• 2002-10: Bugzilla Helper created
• 2003-09: Specific search created
• 2004-12: Hendrix created

Can anyone else think of other events or software deployments which may be relevant? I'm happy to do the research to find out when they happened.

FOSS4G 2010 call for abstracts is now open! As usual, there will be a flood of awesome abstracts and ideas to be chosen from. Make sure a presentation proposal for your favourite project or case study gets in by the deadline, so you have your excuse to goto Barcelona :)

http://www.osgeo.org/foss4g/2010/call_for_abstracts

The awesome Jeremy Orem has written a Mediawiki extension to allow the direct embedding of Open Video, and has turned this feature on on wiki.mozilla.org. Check out my demo page (you just type the normal HTML syntax into the wiki markup) and then feel free to use it to host Mozilla-relevant videos. (Note: wiki.mozilla.org has a 32MB file upload limit.)

You might remember that a while ago, Drupal was promoted to the 'Visionaries' category in Gartner's Magic Quadrant for Social Software in the Workplace. For someone unfamiliar with all the social software vendors and projects, the choice can be overwhelming and Gartner's reports can carry a lot of weight in the decision making process. Drupal's promotion to the 'Visionaries' category was a big win for all of us.

The social software market is evolving fast, and in response Gartner is working on a presentation that compares all of the different social software players in the enterprise market, including open-source projects like Drupal. As part of that process, Acquia was invited to review the presentation and provide comments about the social software landscape and Drupal's success stories. These success stories are important to help Gartner position Drupal against its many competitors. We will also be having a followup meeting with Gartner for further discussion.

Gartner considers three different use cases for social software: (i) team collaboration software, (ii) community software and (iii) networking software. Each of these scenarios have different requirements and emphasize different features of social software. User profiles and group support seems to carry a lot of weight in their evaluations. In addition, for each of these use cases, Gartner considers two different deployment scenarios: (a) sites inside the workplace and (b) externally facing websites. This effectively creates a 3x2 matrix or grid.

To help prepare for our meeting with Gartner, and to help further Drupal's competitive positioning in the enterprise we're looking for good examples in each of those categories. Good suggestions? Post them in the comments of this blog post. Remember that Gartner is focused on the enterprise, so we're looking for examples in the enterprise that carry a lot of weight. Thanks for your help!

In a follow-up to my previous post, here's an example of what can happen if your build your business on non-free data or software from a single supplier:

Nav4All navigation shut down by Navteq

Letter to 27,625,631 Nav4All navigation customers

Dear Customers,

It is with the deepest regret that we hereby notify you that the global navigation of Nav4All and the Tracking & Tracing will go offline in 3 days. The reason for the same is that the data licence agreement with Navteq (a 100% Nokia subsidiary) was not extended, in a totally unexpected manner. ...

Nav4All worked on "hundreds of different mobile telephones of many makes such as Blackberry, Sony Ericsson, Samsung, Motorola, Android, HTC, Nokia, LG, Iphone, Ipod etc." Navteq is now owned by Nokia. It's not hard to join the dots. I'm somewhat surprised Nav4All call this "totally unexpected", though. It's the obvious thing for Nokia to do. And they bought Navteq over two years ago. If I were a Nav4All shareholder, I'd be having strong words with the management right now...

The Drupal Association is a non-profit organization dedicated to helping the Drupal community with fun­ding, infra­structure, events, promotion and distribution. The current Board of Directors was elected almost a year ago, so it's election time again!

On March 1st, 2010 we will elect new Permanent Members to the General Assembly. The General Assembly wil then select our Board of Directors, who are responsible for oversight of day-to-day operations. All the details can be found in the Drupal Association's Statutes.

We are looking for people who aspire to become Directors on the Drupal Association's Board and who can provide leadership and experience to expand the reach of the Association and its activities. All current Board positions, except the President and Treasurer, are up for election, including Secretary, Legal Officer, Marketing and Communications, Infrastructure Manager, Fundraiser, and Events Manager.

The Association is also looking for new General Assembly members with skills in marketing, drupal.org webmaster coordination, project management and more. People interested in becoming a Permanent Members are invited to apply. While Permanent Members don't have the defined responsibilities of board members, membership implies a commitment to work for and promote the goals of the Association.

The Drupal Association is run by unpaid volunteers and we expect that our board members will spend a considerable amount of time working on Association responsibilities and obligations. If you think you're a good candidate, and you have the time it takes, find an existing Permanent Member to support your candidacy (i.e. find a supporter) and submit your application. Applications are due by February 22th and on March 1st, we elect the new Permanent Members and the new Board of Directors.

If you have questions, don't hesitate to ask them in the comments, or to contact the Drupal Association.

Software freedom means never having to say "I'm very much hoping Apple continues to allow...".

And that's all you'll hear from me about the iPad :-)