{"guid":"318022ab-f38f-41a5-ad1a-ab4ff49b4443","title":"Running the internet, under-funded and under-staffed?","subtitle":"How to achieve a sustainable open source ecosystem","slug":"froscon2024-3084-running_the_internet_under-funded_and_under-staffed","link":"https://programm.froscon.org/2024/events/3084.html","description":"Open Source technologies build the foundation of the free and open internet, but many are developed by only a single maintainer or a very small community.\n\nDespite the critical role these tools play in the internet ecosystem, they are perpetually under-funded and under-supported.\n\nThe similarity to other “system relevant” professions is striking: The more we need them to keep the system running, the less we are willing to appreciate and sufficiently fund them.\n\nWho cares? We all need to, as without proper funding and without redundant staffing, these projects may die out, leaving critical components unmaintained.\n\nThis year we see the 10th anniversary of the disclosure of Heartbleed, an OpenSSL bug allowing for massive exploit of that key encryption library. \nAt the time of disclosure, some 17% (around half a million) of the Internet's secure web servers were believed to be vulnerable to the attack.\nIt allowed theft of the servers' private keys and users' session cookies and passwords, \nmaking this the “worst vulnerability found since commercial traffic began to flow on the Internet” (Wikipedia).\n\nWhen Heartbleed was discovered, OpenSSL was maintained by a handful of volunteers, only one of whom worked full-time.\nYearly donations to the OpenSSL project were about $2,000$.\n\nIn my talk, I will showcase the state of a couple of key and well-known Open Source technologies, exploring their staffing and funding situation. \n\nWe will revisit the improvements that happened since Heartbleed put a spotlight on the situation, but I will also share examples of a continuation of the problem, like the Log4j exploit in 2021.\n\nThe keynote is meant as a call to action both for us as individuals as well as a society, to care for Open Source software and those who write it - as one.of the key common goods our society ‘s infrastructure is built on.\n","original_language":"eng","persons":["Jutta Horstmann"],"tags":["froscon2024","3084","2024","Bridging the Gap between politics and reality - Open Source Lobbying"],"view_count":117,"promoted":false,"date":"2024-08-17T12:45:00.000+02:00","release_date":"2024-08-17T00:00:00.000+02:00","updated_at":"2025-12-23T03:45:03.898+01:00","length":2772,"duration":2772,"thumb_url":"https://static.media.ccc.de/media/events/froscon/2024/3084-318022ab-f38f-41a5-ad1a-ab4ff49b4443.jpg","poster_url":"https://static.media.ccc.de/media/events/froscon/2024/3084-318022ab-f38f-41a5-ad1a-ab4ff49b4443_preview.jpg","timeline_url":"https://static.media.ccc.de/media/events/froscon/2024/3084-318022ab-f38f-41a5-ad1a-ab4ff49b4443.timeline.jpg","thumbnails_url":"https://static.media.ccc.de/media/events/froscon/2024/3084-318022ab-f38f-41a5-ad1a-ab4ff49b4443.thumbnails.vtt","frontend_link":"https://media.ccc.de/v/froscon2024-3084-running_the_internet_under-funded_and_under-staffed","url":"https://api.media.ccc.de/public/events/318022ab-f38f-41a5-ad1a-ab4ff49b4443","conference_title":"FrOSCon 2024","conference_url":"https://api.media.ccc.de/public/conferences/froscon2024","related":[],"recordings":[{"size":372,"length":2772,"mime_type":"video/webm","language":"eng","filename":"froscon2024-3084-eng-Running_the_internet_under-funded_and_under-staffed_webm-hd.webm","state":"new","folder":"webm-hd","high_quality":true,"width":1920,"height":1080,"updated_at":"2024-08-17T17:24:44.691+02:00","recording_url":"https://cdn.media.ccc.de/events/froscon/2024/webm-hd/froscon2024-3084-eng-Running_the_internet_under-funded_and_under-staffed_webm-hd.webm","url":"https://api.media.ccc.de/public/recordings/78731","event_url":"https://api.media.ccc.de/public/events/318022ab-f38f-41a5-ad1a-ab4ff49b4443","conference_url":"https://api.media.ccc.de/public/conferences/froscon2024"},{"size":112,"length":2772,"mime_type":"video/webm","language":"eng","filename":"froscon2024-3084-eng-Running_the_internet_under-funded_and_under-staffed_webm-sd.webm","state":"new","folder":"webm-sd","high_quality":false,"width":720,"height":576,"updated_at":"2024-08-17T17:08:57.502+02:00","recording_url":"https://cdn.media.ccc.de/events/froscon/2024/webm-sd/froscon2024-3084-eng-Running_the_internet_under-funded_and_under-staffed_webm-sd.webm","url":"https://api.media.ccc.de/public/recordings/78727","event_url":"https://api.media.ccc.de/public/events/318022ab-f38f-41a5-ad1a-ab4ff49b4443","conference_url":"https://api.media.ccc.de/public/conferences/froscon2024"},{"size":115,"length":2772,"mime_type":"video/mp4","language":"eng","filename":"froscon2024-3084-eng-Running_the_internet_under-funded_and_under-staffed_sd.mp4","state":"new","folder":"h264-sd","high_quality":false,"width":720,"height":576,"updated_at":"2024-08-17T16:10:21.616+02:00","recording_url":"https://cdn.media.ccc.de/events/froscon/2024/h264-sd/froscon2024-3084-eng-Running_the_internet_under-funded_and_under-staffed_sd.mp4","url":"https://api.media.ccc.de/public/recordings/78709","event_url":"https://api.media.ccc.de/public/events/318022ab-f38f-41a5-ad1a-ab4ff49b4443","conference_url":"https://api.media.ccc.de/public/conferences/froscon2024"},{"size":26,"length":2772,"mime_type":"audio/opus","language":"eng","filename":"froscon2024-3084-eng-Running_the_internet_under-funded_and_under-staffed_opus.opus","state":"new","folder":"opus","high_quality":false,"width":0,"height":0,"updated_at":"2024-08-17T15:58:55.700+02:00","recording_url":"https://cdn.media.ccc.de/events/froscon/2024/opus/froscon2024-3084-eng-Running_the_internet_under-funded_and_under-staffed_opus.opus","url":"https://api.media.ccc.de/public/recordings/78705","event_url":"https://api.media.ccc.de/public/events/318022ab-f38f-41a5-ad1a-ab4ff49b4443","conference_url":"https://api.media.ccc.de/public/conferences/froscon2024"},{"size":42,"length":2772,"mime_type":"audio/mpeg","language":"eng","filename":"froscon2024-3084-eng-Running_the_internet_under-funded_and_under-staffed_mp3.mp3","state":"new","folder":"mp3","high_quality":false,"width":0,"height":0,"updated_at":"2024-08-17T15:58:21.068+02:00","recording_url":"https://cdn.media.ccc.de/events/froscon/2024/mp3/froscon2024-3084-eng-Running_the_internet_under-funded_and_under-staffed_mp3.mp3","url":"https://api.media.ccc.de/public/recordings/78704","event_url":"https://api.media.ccc.de/public/events/318022ab-f38f-41a5-ad1a-ab4ff49b4443","conference_url":"https://api.media.ccc.de/public/conferences/froscon2024"},{"size":687,"length":2772,"mime_type":"video/mp4","language":"eng","filename":"froscon2024-3084-eng-Running_the_internet_under-funded_and_under-staffed_hd.mp4","state":"new","folder":"h264-hd","high_quality":true,"width":1920,"height":1080,"updated_at":"2024-08-17T15:58:17.592+02:00","recording_url":"https://cdn.media.ccc.de/events/froscon/2024/h264-hd/froscon2024-3084-eng-Running_the_internet_under-funded_and_under-staffed_hd.mp4","url":"https://api.media.ccc.de/public/recordings/78703","event_url":"https://api.media.ccc.de/public/events/318022ab-f38f-41a5-ad1a-ab4ff49b4443","conference_url":"https://api.media.ccc.de/public/conferences/froscon2024"}]}