Open source must boldly go where no software has gone before

OSes

Open source's new mission: To boldly go where no software has gone before

FOSS's license to exist depends on helping users. It has to learn to think that way

OPINION Bruce Perens is unhappy. He sees the spirit and potency of FOSS decaying into obsolescence as the big guns learn to game the system and users don't see the point.

What comes after open source? Bruce Perens is working on it

He should know. Perens co-authored the Open Source Definition document, laying out the principles and purpose by which open source licensing should work. This came out in early 1998, right at the moment the internet burst its banks and became a global flood. The astonishing histories of both have been inextricably intertwined ever since.

It's obviously true that the internet freed software from the physical media it had previously been distributed on. To reach a million users, you no longer had to copy and send out a million spinnable lumps of plastic and metal. You didn't have to be Microsoft to create and broadcast a new operating system, you merely needed to be a Finn with attitude.

Equally importantly, the internet was bidirectional. There was no longer an automatic barrier between the producer and the consumer of software, or between consumers who wanted to become producers themselves. The gatekeepers were, if not gone, no longer protected from competition through economic heft. With open source licensing, moreover, they no longer set the rules of the game.

In return, FOSS gave the internet the tools to grow at its own speed. The early adopters were never going to hang around for Microsoft or IBM to figure things out, they were going to build and share their own servers and infrastructure tools. By the time realization dawned in the boardroom, those rickety early packages had iterated into fully functional, universally deployed, reliable foundations of the new economy. Oops. Double oops: In so doing, they had validated and exemplified how to do FOSS of all kinds. FOSS and the internet reached critical mass, and kept on growing.

Fans of astrophysics will know what happens to massive objects that keep growing. Gravity overcomes everything and boom – black holes appear. In this case, the critical transition took place in the cloud, the quintessential evolution of FOSS and the internet. Imagine if Larry Page and Sergey Brin, the founders of Google, had gone to Microsoft in 1998 – it's that year again – to ask for a licensing package to build out Google on Windows. Nothing scales like free. And while a lot of big company FOSS usage feeds back to the community, a lot does not. If you don't distribute the code at all, you can lock up your changes too – and cloud services built on FOSS can be a secret as if every byte of code was written inside the event horizon.

Or you can be IBM and just wriggle out of things. As Perens bleakly notes, after all these years, the loopholes have been found and exploited, while the inherent problems with FOSS have not been addressed. Equitable distribution of funding, lack of user-focused design, and lack of user awareness of what FOSS can give them, even what it is, means it's time to find a new path.

This arc is inevitable. All revolutions are tamed. The youthful, angry rebels who drove rock and roll, punk, and hip-hop are now establishment-approved fossils in gilded display cabinets. Or dead. Or both. There'll never be another Apache, like there'll never be another Johnny Rotten. There doesn't need to be.

Traditional FOSS and the internet consumed the world because between the two of them they could hyper-evolve to colonize the new lands of fast comms and ever-cheaper digital devices. There are new horizons for the fleet of foot and itchy of genes, but you have to look at things differently.

Perens says that users don't understand the freedoms FOSS gives, and developers don't understand users. He was right on both counts. The software that developers build is the software we talk about – it lives in repos, in source files, in distros. The software users see a multi-headed mutant shape-shifting dragon that swallows up and disgorges data – whatever that is – according to its own rules. Userland isn't built out of software at all, it's built out of data that flies from the screen to the eyes, from the mouth to the microphone. Users know that once inside the dragon, their data can be stolen and abused. They didn't know how to do anything about it, like they don't know why they have to use two calendars and three video conferencing systems. They don't know why the app they've been using for three years just changed beyond recognition.

MORE CONTEXT

This is the landscape that needs to be colonized by ideas that help the users. Open source by itself cannot be the cure: a Minotaur's labyrinth costs nothing to enter. What we need is string to find our way out again.

Stop thinking of FOSS software as clever code that lives in git boxes. See it instead as a paving stone or a wall or a destination in the flow of data that actually describes the user's digital world. Make it a condition of code use not just that modifications must be freely available, except when they're not, but that the flow of data must be discoverable to the originator of that data. Where's it coming from? Where's it going? Imagine a traceroute that goes up through the application layer into the data flow between components of what lives up there.

This would extend the inherent transparency of FOSS – something only visible to the highly trained – to the user. The details won't matter to them, but the ability for their device to warn at once if a service or an app or a platform is using a compromised component? With an open, real-time manifest captured available, that becomes possible. As does a "where's my data?" magic button that works independently of service suppliers. It might sound an incredible burden on providers and vendors, but this is 2024.

The megatonnage of useless data flowing through our infrastructure is incalculable. We know how to define efficient APIs and set rules that can be efficiently served at global scale. Open source has been intrinsic to all that. Now it can blossom into the user-focused, data-centric ecosystem we so badly need. ®

Portuguese bank sign's storage is about to cash out

Time to switch back to paper and harvest that suddenly valuable RAM

NASA tests AI medic for astronauts too far from Earth to call a doctor

Please state the nature of the medical emergency

Jiangsu's first AI-powered 10 Gbps all-optical campus network launched at Southeast University

PARTNER CONTENT: Integrating 50G-PON, FTTR-B, Wi-Fi 7, and intelligent AI scheduling to deliver 10 Gbps bidirectional speeds with ultra-low 0.1ms latency across Southeast University

It's looking like a hot, messy summer for security teams as AI finds countless previously hidden vulns

Time to start praying to the goddess of wisdom and war

Lessons from the VMwars – nothing virtual about the Broadcom vs Tesco slugfest

Never get involved in a land war in Asia. Also, don't pick a contract fight with a monster of the art

Even the Secret Service won't use company-issued phones

Personal cell phones on protective missions, no threat detection on government-issued devices among the litany of sins

MOST POPULAR

  • [systems

Micron locks in historically high memory prices for five years](https://www.theregister.com/systems/2026/06/25/micron-locks-in-historically-high-memory-prices-for-five-years/5261854)

  • [Channel

Infosys boss says vibe coding is no threat because there’s more to writing software than writing software](https://www.theregister.com/channel/2026/06/25/infosys-boss-says-vibe-coding-is-no-threat-because-theres-more-to-writing-software-than-writing-software/5261900)

  • [Personal tech

India and China are home to 2.9 billion people – and together they bought just 13 million PCs in Q1](https://www.theregister.com/personal-tech/2026/06/23/india-and-china-are-home-to-29-billion-people-and-together-they-bought-just-13-million-pcs-in-q1/5259893)

  • [Security

Mythos discovers 'Squidbleed,' a memory leak that's gone undetected since Clinton era](https://www.theregister.com/security/2026/06/23/mythos-discovers-squidbleed-a-memory-leak-thats-gone-undetected-since-clinton-era/5260367)

  • [Research

Boffin claims Microsoft's supposed quantum leap does not compute due to 'basic Python errors'](https://www.theregister.com/research/2026/06/24/boffin-claims-microsofts-supposed-quantum-leap-does-not-compute-due-to-basic-python-errors/5260489)

AI

  • [Security

It's looking like a hot, messy summer for security teams as AI finds countless previously hidden vulns Time to start praying to the goddess of wisdom and war](https://www.theregister.com/security/2026/06/27/its-looking-like-a-hot-messy-summer-for-security-teams-as-ai-finds-countless-previously-hidden-vulns/5260478)

  • [AI AND ML

Google wants AI regulation, but on its own terms Surely, we can have rules that allow us to continue doing what we're doing](https://www.theregister.com/ai-and-ml/2026/06/26/google-wants-ai-regulation-but-on-its-own-terms/5263276)

  • [offbeat

US auto regulators want to kill robotaxi brake pedals Requiring driverless vehicles to keep human brake controls impedes innovation, the NHTSA says](https://www.theregister.com/offbeat/2026/06/26/us-auto-regulators-want-to-kill-robotaxi-brake-pedals/5263228)

  • [security

Amazon Q flaw let booby-trapped Git repos execute code, swipe cloud creds Researchers warn many AI coding assistants now execute commands from project configurations](https://www.theregister.com/cyber-crime/2026/06/26/amazon-q-flaw-let-booby-trapped-git-repos-execute-code-swipe-cloud-creds/5263202)

  • [AI and ML

AI giants back non-profit to retrain workers left behind by AI Sorry we spent your wages on datacenters, but call us when you're AI-ready](https://www.theregister.com/ai-and-ml/2026/06/26/ai-giants-back-non-profit-to-retrain-workers-left-behind-by-ai/5262601)

Infosec

  • [Security

Russians are posing as Signal support to launch phishing attacks PLUS: US takes down Iranian propaganda sites; Marketing company asks 'Why Do We Have Your Information?' And more!](https://www.theregister.com/security/2026/03/22/russians-posing-as-signal-support-to-launch-phishing-raids/5221189)

  • [Security

Microsoft patches failed to fix on-prem SharePoint, which is now under zero-day attack PLUS: China upgrades smartphone surveillance tools; Ring eases anti-snooping stance; and more](https://www.theregister.com/security/2025/07/21/microsoft-warns-on-prem-sharepoint-users-of-a-zero-day/550805)

  • [Black Hat and DEF CON

DEF CON Franklin project enlists hackers to harden critical infrastructure Voting village reports have been so successful, says Jeff Moss, that the whole of DEF CON will now be included](https://www.theregister.com/special-features/2024/08/12/def-con-launches-public-policy-report-volunteer-program/408600)

  • [Security

EQT buys majority share in Swiss cybersecurity biz Acronis Went at equivalent of $3.5B+ valuation for entire firm, though portion sold not specified](https://www.theregister.com/security/2024/08/07/eqt-buys-majority-share-in-cybersecurity-outfit-acronis/853853)

  • [Malware Month

Ten years since the first corp ransomware, Mikko Hyppönen sees no end in sight On the plus side, infosec's a good bet for a long, stable career](https://www.theregister.com/special-features/2024/05/08/10-years-since-the-first-corp-ransomware-and-no-end-in-sight/1259096)

FOSS

  • [Collabora releases CODE 26.04 as rivalry between FOSS cloudy office suites heats up

Now with Markdown support and smarter formula error handling – plus integrated AI, though it's off by default](https://www.theregister.com/applications/2026/06/25/collabora-releases-code-2604-as-rivalry-between-foss-cloudy-office-suites-heats-up/5261468)

  • [Blast from the past as GIMP 0.54 is revived in Flatpak form

Retro-computing fun for the nostalgic with first (and last) release to use Motif instead of GTK](https://www.theregister.com/software/2026/06/23/blast-from-the-past-as-gimp-054-is-revived-in-flatpak-form/5259651)

  • [Bcachefs exits experimental status in new 'performance release'

More Rust, but more trouble with AI slop, too](https://www.theregister.com/software/2026/06/19/bcachefs-exits-experimental-status-in-new-performance-release/5258801)

  • [France's digital sovereignty push is struggling to escape the Microsoft gravity well

Nextcloud rollout shows locally controlled storage is one thing; getting users off Office is quite another](https://www.theregister.com/on-prem/2026/06/16/frances-digital-sovereignty-push-is-struggling-to-escape-the-microsoft-gravity-well/5255380)

  • [History of CentOS: How a biochemist's Linux hobby project became the enterprise world's default operating system

When a community came together after Red Hat said Windows was 'probably the right product'](https://www.theregister.com/os-platforms/2026/06/08/history-of-centos-how-a-biochemists-linux-hobby-project-became-the-enterprise-worlds-default-operating-system/5251530)

  • [Netflix wiz creates app to slash AI bills, then open sources it

Project Headroom could save you big money, too](https://www.theregister.com/ai-ml/2026/05/31/netflix-wiz-creates-app-to-slash-ai-bills-then-open-sources-it/5248702)