Continuation of the OSS IDM topics from the previous conference days
OSS IDM Biz models
Martin: For my organization some assurance for continued support from a vendor -> SYMAS will provide this
389 fineprint is only free with the RH IAM, but not as stand-alone product.
GUI: Can use Apache Directory Studio, but is not complete, e.g. ACL cannot properly do, sequence of configurations is important.
Do-it-yourself builds: lots of warnings, but SYMAS takes care that all warnings have been looked at.
Will schedule a separate session tomorrow morning.
Possible topics: Financing of open source development (maybe including bounties?) Coordination across small businesses supporting open source projects Cross project coordination (development cycles, product interoperability, etc.)
How to deal with bug bounty programs? There is an EU bug bounty program. While security researchers need to be funded, there are no funds going to OSS program to fix them.
Matthew Hardin on OSS Biz Models and cooperation for IAM
“we write software, give it away and sell services around it”
The OS vendors does not support servers good enough: too old, libraries that still contain CVEs, ..
The largest part of the revenues come from support contracts, that are usually direct,