Nmap Security Scanner
*Intro
*Ref Guide
*Install Guide
*Download
*Changelog
*Book
*Docs
Security Lists
*Nmap Hackers
*Nmap Dev
*Bugtraq
*Full Disclosure
*Pen Test
*Basics
*More
Security Tools
*Pass crackers
*Sniffers
*Vuln Scanners
*Web scanners
*Wireless
*Exploitation
*Packet crafters
*More
Site News
Site Search:
Exploit World
Advertising
About/Contact
Credits
Sponsors:
edgeos



Nmap Development: Re: License of Nmap LUA scripts

Re: License of Nmap LUA scripts

From: Dirk Loss <lists_at_dirk-loss.de>
Date: Tue, 01 Aug 2006 08:12:39 +0200

Hi Fyodor,

thanks for clarification. The suggested license policy sounds reasonable
to me. I tried to summarize it below from your comments.

Regards
Dirk

Fyodor wrote:
[General policy for NSE scripts]
> We will be sure to make the plugin licenses clear.

> my current plan is to treat plugins just like the rest of Nmap and
> release them under the same license ( http://insecure.org/nmap/data/
> COPYING ). Contribution rules would also be the same.

[Proprietary NSE scripts]
> If someone actually wants to start selling proprietary NSE scripts,
> write me and I'll expedite the process of finding an answer.

[Scripts to be included in mainstream Nmap]
>>2) What licenses does Fyodor allow for a script in order to be
>> included in the default Nmap distribution?
> Probably the same as for other Nmap contributions, as specified in the
> COPYING file [...]
> Simply licensing the script under a BSD-style license [without
> advertising clause] works too.

[Adding a license statement]
> The best (From a legal sense) way may be to simply insert the Nmap
> copyright header (as fond on the top of all source code files) to the
> top of the script. [...]
> Admittedly it may still be longer than the script itself, so I'll
> try to think of a shorter way.
> Or if you just want to BSD license the script, including a BSD-style
> (no advertising clause) copyright statement up top is sufficient.

[Sending patches]
> When people send Nmap patches to nmap-dev I generally assume they are
> being offered for Nmap inclusion under the COPYING terms above.

> [...] if you want to send a script to nmap-dev but don't
> want it included in Nmap, just say so.

> If you wish to specify special license conditions of your
> contributions, just say so when you send them.

> Note that we don't insist on copyright assignment like the FSF and
> other organizations do. So you still retain all rights to use and
> relicense your script/patch/code as you wish. You just give us the
> rights to use it too.

_______________________________________________
Sent through the nmap-dev mailing list
http://cgi.insecure.org/mailman/listinfo/nmap-dev
Received on Jul 31 2006

[ Nmap | Sec Tools | Mailing Lists | Site News | About/Contact | Advertising | Privacy ]